smithereenz

yes, mod_security rule is in place. Nothing on the basic cPanel raw access logs for the domain so Im now looking at server logs. 4 accounts were sitting in WHMCS with unverified email addresses (probably because the addresses were totally made up).

I woke this morning to 4 new clients with made up emails and with the words "hack" and "Pirate" all created a few hours ago. I applied the 5.2.8 update on the 4th so there must still be an issue. I've removed my register.php page temporarily as this is the entry point... google whmcs 5.2.8 hack, you'll see a listing on a hacking site explaining how to do it.... they also recommend downloading 5.2.8 to do it Submitted a ticket with an many details as possible and currently in the process of downloading raw access logs.

PROBLEM SOLVED FIRSTLY - I had the extra code in <?php ?> tags, and it should have been inside the main block of PHP SECONDLY - the instructions here = http://docs.whmcs.com/Further_Security_Steps wrap the code in " where I could only get it to work with ' Support were quick to answer considering the time difference so the G Force world has been saved thanks again

SO !!!! basically if I edit the configuration.php in any way it causes this issue I then have to drop DB, re-install, drop new DB and import old DB and it works fine... I'll open a ticket and hope they can advise

sorted... dropped the DB, carried out a fresh install, dropped the new DB then imported the old one. I'll try and secure again and see how/when it breaks thanks for your response

only <?php date_default_timezone_set('Europe/London'); ?> in the config file... I'll drop the DB, do a fresh install and try to import the old DB again a bit at a time and see if I can narrow it down //yes, just updated the signature will sort the edit it again just now

from - http://www.gforceinternet.co.uk/hosting/cart.php?a=add&pid=1 choose, I will update my own name servers, after you click to continue it returns a blank screen. I thought it was a custom theme I was using so have set it back to a standard theme. Not sure if this is linked... I followed the instructions to secure WHMCS - http://docs.whmcs.com/Further_Security_Steps I have removed this to see if it sorts it but it hasn't helped. Debug reporting is currently enabled as it is a fresh install which isn't going fully live until April and it returns no errors?

Hi, I have a ticket opened for this but am keen to try and hurry things a little. System works fine until a client tries to update their own name servers and the next screen is returned blank. new domain or transfer domain is fine, it is only blank on update own name servers. It happened once before and i had to re-install... I don't want to go to this effort again

Quick update Last week I removed the Pipe and all the bouncing stopped... our ticket system is working fine so i'm just going to leave it

I've disabled the email from being sent... I'll monitor the situaltion and keep you informed thanks for all the responses with this one

submitted a support ticket... hopefully it will be something simple

no, I have box trapper set up and have checked the logs and the emails are FROM the support mail we have setup for the client eare... from what i can see it runs at around the time our CRON jobs are set. I've checked everything but can't see anything. I've disabled the bounce email in the mean time.

Hi guys, We are getting THOUSANDS... and I mean... THOUSANDS of failed messages from our support email address which only use with WHMCS It starts This message was created automatically by mail delivery software. and holds default bounce email message Mail Delivery System , Your email to our support system could not be accepted because it was not recognized as coming from an email address belonging to one of our customers. If you need assistance, please email from the address you registered with us that you use to login to our client area. any ideas what can be causing this. I've disabled this feature in the mean time till I can find a solution many thanks in advance

thanks for the tip... I just finished skinning WHMCS to integrate it with the main site so i'll try this soon. loking forward to seeing your site:)

yes, this allows me to show the domain checker on the main page of my main site, but when the submit button is clicked and the results are shown, it displays domainchecker.php (or equivilant custom page) along with header, footer and menu which forces scroll bars into the wrapper/iframe