List of Security Questions

jeremyhaber · April 8, 2010

Hey Guys,

I thought it would be great to start a thread with a list of security questions you can have for your clients in WHMCS.

Here are the ones I tend to use in my installations of WHMCS. Feel free to contribute to this for others to use.

In what city or town was your first job?
What is your maternal grandmother's maiden name?
What was the name of your elementary / primary school?
What is your youngest brother’s birthday?
Where does your nearest sibling live?
What was the last name of your third grade teacher?
What is the first name of the boy or girl that you first kissed?
In what city or town did your mother and father meet?
What was the name of your first stuffed animal?
What is your oldest cousin's first and last name?
What was your childhood phone number including area code? (e.g., 000-000-0000)
What school did you attend for sixth grade?
What is your oldest sibling's middle name?
What is your oldest sibling’s birthday month and year? (e.g., January 1900)
What is the middle name of your youngest child?
What street did you live on in third grade?
What is the name of your favorite childhood friend?
In what city did you meet your spouse/significant other?
What was your childhood nickname?

scurrell · April 8, 2010

The majority of those look a bit complex to me. I doubt I could answer more than 5 of them! :lol:

Austdata · April 9, 2010

@scurrell. I think you'd only need to answer three of them.

@jeremyhaber: Why not let the customer pick their own questions instead?

jeremyhaber · April 9, 2010

You mean like a customized field for the customer? Where they can input their own question? I dont think WHMCS comes with that ability.

These are just the list of security questions I use on my own site. The customer can choose any one. I believe these questions are used in the password reset function.

This is just something that I thought I should share. Since WHMCS does not come with any preinstalled ones.

sgrayban · April 9, 2010

Nice list !

Austdata · April 9, 2010

You mean like a customized field for the customer? Where they can input their own question? I dont think WHMCS comes with that ability.

Yep, I would like to use the old family name but there's no option like that at all. Perhaps I could use the old clan's name but nothing like that either. But it would be good if the prompt could be user definable. That is, without me hacking the database. :twisted:

sohouk · April 15, 2010

The list is good. I would have trouble recalling even one of them so it may not fit all users.

I wonder why three answers are needed. That should be a setting decided by the user.

jeremyhaber · April 15, 2010

hahaha the goal of a security question is it is something you can remember the answer to but still cause a challenge for someone else.... I can recall quite a few on this list. But the questions on my web banking account I can never recall..... its really hit or miss with the questions.

Sodak1d · May 3, 2010

Thanks for the list. Im sure it will come in handy some time some day.

Edited May 3, 2010 by Sodak1d

samiryours · July 31, 2011

I don't think its important that the client should pick a correct answer for their security question. It is all about remembering the tricky answer of any of these security questions.

For an example

if the client choose the question

In what city or town was your first job? in at security answer he put his birth day it will be hard for anyone to think about the answer and most importantly the client should remember the answer.

A security answer should be something like this that will make it more complex to be leaked.

If the client put the real answer it may possible some one near to him / her can guess the answer but with such complex answer where the question ask something else and answer is something else, make it harder for anyone to guess. :idea:

robingupta82 · August 24, 2011

Thanks for the list.

TailoredVPS · August 26, 2011

That list will come in handy. Thank you for sharing it

Hien · August 29, 2011

Thank you for sharing this list

rlshosting · September 9, 2011

Thank you for the list. It's a well developed list and it works for us quite well.

VicToMeyeZR · September 14, 2011

Thank you for the list. I always have a hard time trying to think of these. Great resource.

MACscr · September 23, 2011

Im lazy, how about an sql table dump for the questions? =P

jeremyhaber · September 24, 2011

I think a sql table dump is a bit harder to do then you might think for this. It looks like the questions are encrypted in the sql database for some reason. It would have to go through a PHP script. I can look into it when I have a few moments of spare time.

jeremyhaber · October 2, 2011

For a quick install create a temporary PHP file in your home WHMCS directory. Run the following script:

<?php

include "dbconnect.php";
include "includes/functions.php";

//mysql_query("DELETE FROM `tbladminsecurityquestions` WHERE 1"); #If something goes wrong this will clear the slate for your questions.
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('In what city or town was your first job?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What is your maternal grandmother\'s maiden name?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What was the name of your elementary / primary school?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What is your youngest brother\'s birthday?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('Where does your nearest sibling live?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What was the last name of your third grade teacher?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What is the first name of the boy or girl that you first kissed?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('In what city or town did your mother and father meet?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What was the name of your first stuffed animal?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What is your oldest cousin\'s first and last name?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What was your childhood phone number including area code? (e.g., 000-000-0000)')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What school did you attend for sixth grade?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What is your oldest sibling\'s middle name?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What is your oldest sibling\'s birthday month and year? (e.g., January 1900)')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What is the middle name of your youngest child?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What street did you live on in third grade?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What is the name of your favorite childhood friend?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('In what city did you meet your spouse/significant other?')."')");
mysql_query("INSERT INTO `tbladminsecurityquestions` (`question`) VALUES ('".encrypt('What was your childhood nickname?')."')");

Delete the file after you run the script. The security questions will be added.

singh9211 · October 12, 2011

thanks a lot, it really helped a lot.......

iJohnnyCP · October 14, 2011

Thanks a lot of the script.

mikejs · November 12, 2011

Hi this has now happend twice my security questions become garbage see image

anyone know what casues this

thanks

jeremyhaber · November 13, 2011

The security questions are encoded by WHMCS. You either have to use the script above or insert them manually.

If you change your cc hash in your configuration your security questions will look something like that.

tynman · November 29, 2011

Thank you for posting the php and of course the questions. Saves me a lot of time!

take care

wsd · December 10, 2011

Thank you, so we just need that we have the opportunity to create them in several languages so that everyone can understand what they must answer.

pointaction · January 6, 2012

I used Google to search for a list of security questions.

Google is your friend.

List of Security Questions

Recommended Posts

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Join the conversation

Recently Browsing 0 members

Important Information