petru

Issue Resolved: config.php had the incorrect path to the WHMCS directory inside the custom crons folder. then ran: php -q /home/accountname/custom_crons_folder/cron.php all --force -vvv And it fixed the cron issues.

I found a second php.ini file inside my admin directory which was loading pdo_mysql, I removed that and it's fixed the errors, but I still have the cron issue present.

I recently migrated to a new server and although I copied my apache configuration from the old server, I am still getting some issues with WHMCS. This all started with an email for a failed cron job which stated Your WHMCS is configured to perform the Daily System Cron during the hour of 12 am. However, the Daily System Cron did not execute within that hour as expected. This may be due to the scheduled time specified in your web hosting control panel's cron entry. Please ensure your web hosting control panel executes the WHMCS System Cron (cron.php) at least once during the hour of 12 am. I proceeded to try and fix this, making sure the crons were setup and all, I couldn't find an issue. So I thought it might be my PHP Version, I double checked that WHMCS supports PHP 7.2 and proceeded to apply it to WHMCS. I also had to install the Ioncube loader for PHP 7.2. Now when I go to most WHMCS pages inside the admin area I get the following error. Whoops\Exception\ErrorException: Module 'pdo_mysql' already loaded in Unknown:0 Stack trace: #0 /home/XXX/public_html/vendor/whmcs/whmcs-foundation/lib/Utility/Error/Run.php(0): WHMCS\Utility\Error\Run->handleError(32, 'Module 'pdo_mys...', 'Unknown', 0) #1 [internal function]: WHMCS\Utility\Error\Run->handleShutdown() #2 {main} This error goes away after commenting the following out in my .htaccess <IfModule mime_module> AddType application/x-httpd-ea-php72 .php .php7 .phtml </IfModule> But then I get the following error when trying to check for updates in WHMCS Unable to Perform Automatic Updates Automatic Updates require the allow_url_fopen setting to be enabled in your PHP configuration. So basically, If I uncomment the .htaccess line, WHMCS Update doesn't show the "Allow_url" error. But the other pages have the "pdo_sql" error. And if I comment the .htaccess line out, I lose the "pdo_sql" error but gain the "allow_url" error. I'll lodge a support ticket and get back with the results if no one here can figure it out. Thanks

I cant seem to wrap my head around the fact that I can't find a free Google Authenticator addon for WHMCS. Is it because one hasn't been made or does WHMCS not want to implement it? I have 20+ accounts running 2FA with Google Auth, I ain't signing up for DUO Crap. I have seen the TOTP App which is $1.50/pm, but there's gotta be a free one somewhere?

Very helpful links Brian. Could you tell me if there's a way that users can open tickets without paying first? So that we can take credits from their account based on what we feel the support costs?

Hi Guys. I'd like to charge my clients for support tickets. I'm wanting to implement some sort of support credits system so that they can buy credits and use thise credits to obtain support. Is there any way I can do this?

Hi Guys, I love WHMCS and I don't want to go looking for another billing and client management solution so I hope I can do what I intend to do. Basically, I want to use the Client Area of WHMCS, So no homepage, and all that, Just the client area. I'm making some changes to my business and I plan to stop selling Hosting Packages and I'll only be giving hosting accounts to web development clients, I also would like to bill our clients for tasks and modifications as we're doing now. but I only want them to login to View and Pay Invoices, They can order new services too, that's fine. But I just don't want the whole "We're a web hosting company" stuff. Hope you guys understand. Thanks

Hey Guys, Just wondering if it's possible to get a captcha on the registration page for WHMCS? or checkout page? Thanks

Hey Guys, I run a business with multiple departments. So not only does the business do Web Hosting and stuff like that but we also have departments in other IT Related Services. The funny thing is, We love WHMCS for client management. You guys have done a brilliant job on it. and I was hoping I'd be able to find an alternative software that uses the same sort of layout and features as WHMCS for Client Management. I know it's a bit of a laugh, but you guys have done in better than any other Client Management Software i've ever used! And I mean that. Seriously, If you don't know of another program that has the same sort of functions, I would highly recommend opening a new company and creating a a version of WHMCS with just the Billing and Client Management. You'd get so many sales Regards, Petru

Thanks Damo, All Fixed Incase anyone else has the same problem. the directory is in the /templates/orderforms/ directory.

Hey Guys, I have an issue that I need to resolve and I'm not sure where the problem begins. I've had a complaint that the .com.au domains are asking for registration ID and Name but there is no field to put this in. I checked the additionaldomainfields.php file and found the following code which looks perfect to me. None of these fields are showing up on the domain registration page. Can anyone tell me why? Thanks

Thank for the reply Brian. I just finished compiling PHP just as you replied. SOAP wasn't enabled. So I've fixed it now. Thanks -petru

Hey guys, Got a bit of an issue that I've been trying to fix. I've got some orders that I need to process and one of them included a Domain name. I've never had this issue before but I'm getting this error when accepting the order I have no idea what the issue is, All the API Settings are correct. The only thing I can think of is the upgrade I made to PHP 5.4 which I updated all php.ini with the 5.4.so IonCube. Everything is working fine. But this error is over my head as to why it's happening. I just updated to the latest version of WHMCS to see if the Module needed an update but that didn't change anything. Clients are starting to fuss over it as you'd expect. Thanks Guys - petru

I've just updated to 5.4 and still got the same issue.

Hi PenserKen, I guess I could try upgrading to 5.4. Everything else is working fine. Even the piping was working fine, All I did was move the directory and reinstalled it in a new directory and now all of a sudden it isn't working. Regards, Petru

Hey guys, I seem to have the email piping set up correctly When sending a test ticket The ticket goes through But I also get a return error email sent back to me. I've made sure the pipe files and folders are all chmod'ed to 775 everything is fine to my knowledge but I'm not sure what is causing this problem. The error I get in the return email says the following I have the Zend Extension set in the php.ini file on my account, I'm absolutely out of Ideas on what could be causing this. This is the line I have in php.ini It is located in the directory where WHMCS is installed. I haven't done an apache update, And all other systems that require Ioncube are running fine. If you need to look at the PHP Info here is the link http://hosting.ptnetworx.com.au/manage/phpinfo.php Thanks guys. ps. I'm not sending emails using the admin email address Regards, Petru

I looked for the email that they would've recived but there was none. Just a welcom email and email for their hosting account. Its very odd though because their email address was a@a.com so im not too sure how they would've recived it anyway. Seems to be okay though. I know my servers or whmce isn't at risk but I just wanted to make sure my clients are safe also.

Thanks for the info. I't turns out that the Users details were different when they signed up. But after signing up they changed their details and included the exploit. I received an email with the users change, But all I could see in the fields was the exploit code. So I gather that if it was a successful attack I would've seen the details that they were after instead of the exploit, Correct?

Well Damn, Thanks for the info. I'm up to date with WHMCS 5.2.15. I Generally check everyday for new updates so i'm glad I'm up to date. Is there any way to find out if they still managed to attack the system? Is there any Symptoms? Thanks

Hey Guys. I have a Free Hosting account package on my WHMCS. This is basically an account that Users can use to see if they will like our service. But it seems like the I'm attracting quite a lot of fake users and potential hackers. I just received and Order under the name Hacker Hacker. And had a suspicious code in the Client information field. The code Said I traced the IP address to Indonesia so I marked it as fraud. Does anyone know what this code is? A Simple Google search come up with a lot of Exploit codes. I have .htaccess restricted the login page for anyone not on my IP address. I have also Password protected the Login directory and renamed it. So maybe that was a good thing that I had already done that prior to this. but I'm curious to know if there is anything that still makes me vulnerable. I also care for the protection of other users on my Server. My root login page for WHM is also IP restricted. If anyone can tell me what I should do from here or if they know anything about the code please let me know. Regards, Petru

Hi John. I'm a little confused about the To Do List. I found what you are talking about but there is nothing in it. Should there be? If so could you possibly explain in a WHMCS noob friendly way? Or point me to some documentation regarding what it is you're trying to tell me? Regards, Petru

Just wanted to update that I added funds to my Reseller account and within a few hours they charged the account and registered the domain. After they registered the domain I got an email telling me what will happen if there are no funds etc. this email would've been quite helpful if I received it when I created an account. So if anyone here is or has anything to do with Resellerclub it would be wise to send an email with this sort of information when users sign up. Other than that it's all fixed now

Hey guys, I recently just set up a Hosting company. We generally get more hosting account purchases than anything else. But we just got a domain purchase and I'm not sure if its all working yet. I received an email saying there was insufficient funds. I'm Using resellerclub. And I logged in to the account thinking I'd need to add funds but it didn't say anything about being in debt or owing anything. So I didn't want to put funds in if I didn't need to. So I thought it would be best if I came here and asked. The user has paid for the domain and hosting. and we have received the payment via Paypal. The status of the domain in ResellerClub says Inactive. Hope this is enough info Thanks guys.

Thanks for your reply SoluteDNS. That link was very helpful. Would you know the answer to my Remote Access Key question?

Hey Guys, I know this is a pretty stupid question to be posted here But I have a few important questions. Recently my Server was compromised and I had a full 48 hour battle with the Hacker without sleep Now, I'm led to believe that the hacker got access to the server via WHMCS, Either by decrypting the passwords that connect to the servers somehow. Im not sure, And I'm not blaming or pointing the finger at anyone or anything. The reason I believe this is because the hacker was first on our Hosting Website and purchased a Small hosting account. After verifying the account we noticed it was suspicious and found that they were about to use the account for illigal purposes not guided by our Terms Of Service which we then suspended on the spot. A Few minutes after this we received an email from WHM saying that there was a root login from an IP that wasn't whitelisted. We logged in Via SSH and changed the passwords and Blocked set a region block to all countries outside Australia to buy us some time to figure out what happened. They also changed the Email address of the server contact which matched the account purchased in WHMCS. They have also spread malware throughout the server which is now cleaned up. But the main question is, How easy is WHMCS to be compromised? I know I might not get some very honest answers here but I'm requesting honest answers, and possible ways to secure WHMCS from any hacking attempts. Is it very known for WHMCS to be Hacked? What security measures should be taken to prevent our website being hacked? I'd also like to know how deadly the Remote Access Key can be in the hands of the wrong person. Thanks