Jump to content

All Activity

This stream auto-updates     

  1. Past hour
  2. Today
  3. I'm experiencing that internal whois lookup ( /admin/whois.php ) does not work for few TLD. I.e: if I check a .com domain, it work fine. But if I check a .es domain, the answer is always "available for registration", also for domain registered! So, checking i.e. google.es ... In the client area the function works fine: if a client try to register google.es, the answer is right... So, what's the difference between admin area whois and client area whois?
  4. Hello Sir, I am facing too much issues with Paytm Payment Gateway for WHMCS, Sir Actually I Integrated Paytm payment gateway with whmcs and when I checked paying then it redirect me to payment page then I pay money but after paying it redirects me to invoice and invoice shows Unpaid . Paytm Payment GateWay is also installed on my another website and its working fine but in new website it create invoice unpaid issue. In my old website whmcs is installed on /public_html and it's working fine but in new website whmcs is installed in /public_html/core folder and it's not working , after paying invoice shows Unpaid. I researched a lot on Google and now I am totally tired off , please someone tell me solution .
  5. I understand, However, this problem has been unresolved for many years, even you answered several posts explaining some ways to solve it and nobody could solve it. None of the answers you gave before worked for anyone on the community. suddenly everything works fine? However. the idea is always to contribute to the community 🙂
  6. Thanks have reported it. Will see what WHMCS says.
  7. Yesterday
  8. Has anyone seen this issue before? Error: HTTP/1.1 596 Broken pipe I am getting in when I try and create a product using the Proxmox VPS module. Seems to have a red padlock with SSL error in the client area. Thanks Tony
  9. Do you use Cloudflare or any other server/front end caching? I have to switch off Cloudflare sometimes. An example is I can't log in to admin, then I switch off caching and it works. Same symptoms. Tony
  10. Good thought. Same problem using a new, private window in Firefox. I tried it with a test account in Chromium, which I have never used to log in to WHMCS before, and got the same "Password incorrect. Please try again" message.
  11. I think this is a caching issue - I have seen something similar. What happens if you try it in an incognito/private browser window?
  12. When a client who has two-factor authentication enabled in WHMCS 7.10.2 signs in and goes user name -> Security Settings, and tries to disable two-factor authentication by clicking "Click here to disable," she is prompted for her current password. Despite entering the correct password--the same one she used to sign in, which obviously works otherwise--she gets the message, "Password incorrect. Please try again." I can disable two-factor authentication for her from the Admin without any problems. PHP error logging is enabled in General Settings -> Other, and there are no errors in the error log.
  13. if it were me, and considering that this has it's own template (clientareaprductusagebilling), then i'd just be tempted to edit the template directly and add your cancellation link to the end of it... Cancellation Form - Click <a href="clientarea.php?action=cancel&id={$serviceid}">Here</a> even if you used a hook, there's no knowing that v8 wouldn't break it - so I would just edit the template for now and look at it again in v8.
  14. I think below proves differently. 🙂 no - everyone tried the old availability string... those strings often change over time, otherwise WHMCS wouldn't occasionally update the dist.whois.json file with those changes.
  15. Last week
  16. Hi, I want to move $moduleclientarea from clientareaproductdetails.tpl to clientareaproducts.tpl How can I do this? Thanks
  17. Hi. Sorry but it is in the right way to work with this specific server. The way you say it doesn't work. everyone tried that way and it never works that way. is the correct way to work with this server. 🙂
  18. Thanks for clearing that up for me. I guess the other 15 banks they have as case studies or the 35 e-commerce case studies including Shopify, which processed more than $3.5bn in transactions last year also support what you say.
  19. As I said before, it's ok for public content. They are using CloudFlare for their public pages at montecito.bank Now if you check their login for online banking my.montecito.bank That is not using CloudFlare anymore. It's on a different network, server.... So they are not using CloudFlare for sensitive information or their banking which proves my previous statements.
  20. Well here's at least one bank that does and the case study from Cloudflare to highlight it: https://www.cloudflare.com/case-studies/montecito/
  21. When you establish an SSL/TLS connection to a server, that connection is encrypted point to point. From your browser to the end server. When you use ClouFlare, that connection is not end-to-end encryption. The browser is encrypting the connection to CloudFlare, with a different certificate than your website, then CloudFlare is doing a second encryption to your end server. Hence, they are in the middle of the connection. It's not end-to-end encryption anymore. They can absolutely see as a plain text every byte transferred from your users to your servers, that includes credit cards, passwords, everything. I'm not saying they are doing this but technically they can as opposed to having a direct connection between your customers. No, financial institutions don't use those services. They use self hosted devices or under their management that do that stuff like a Citrix appliance or netscaler load balancer just to name one brand. Government sites, depends on the certification they need to pass, but usually they don't use that either.
  22. Unless you have a cat5 connection direct to your customers you have the whole internet between you and them. It does not invalidate PCI and end to end encryption prevents any man in the middle attacks. Do you really think banks, financial institutions, governments and more don't use these services to protect themselves? I think I am safe on this one 🙂
  23. That is a nice setup and while CloudFlare offloads some work personally I'm scared to have a middle man like that between my customers and servers. CloudFlare can see all the traffic which is fine for public sites but not so great for applications on which customers log in, handle server logins or make payments like WHMCS. It actually makes PCI compliance invalid as well since there someone now sitting between the encryption that can intercept the traffic.
  24. Hello my friend, it works! Thanks very much for your effort and contribution Regards
  25. have you removed, or not enabled, the cancellation link in the actions sidebar ?
  26. I run PFsense on a physical box with Cloudflare in front of it. The Cloudflare side adds caching and allows me to block countries, force https and limit the source IP's to Cloudflare on the Pfsense box so everyone has to go through it. Cloudflare is pretty comprehensive - it has a Wordpress and WHMCS ruleset right out of the box for example. It keeps threats at arms length and a lot of traffic from ever reaching me saving on bandwidth costs as well. Does things like DDoS before it hits me. PFsense then allows for Snort or Suricata IDS engines locally which I can control as I need. Obviously PFsense is a full feature firewall as well but it mops up anything that can get through Cloudflare. You can virtualise the PFsense part as well if you don't have a physical box. I run two Check Point firewalls which have been re-flashed with PFsense as a HA cluster.
  1. Load more activity
  • Create New...

Important Information

By using this site, you agree to our Terms of Use & Guidelines and understand your posts will initially be pre-moderated