WHMCS Hosted

[SpookedOut]

** WHMCS Hosted **

 

Secure Virtual Enviroment

 

Please contact Me for more info.

 

-------------------------------------------

It would be hosted on servers designed for WHMCS and would hopefully give you 'rest assured, peace of mind'.

 

I have created a POLL to see what your response to this would be.

 

Thanks!

 

[Adamski]

I went for no as I wouldn't want to have my client details stored on another server. Also everything that you offer all hosts already have access to (as they are web hosts) so I'm not sure what the appeal would be?

 

Are you customising it, etc?

 

Adam

[Jordan]

As Adam has already stated, this is something that really needs to be in sole control of the company that is managing it. There are clients that feel that if their data is being stored by another company, other then who they are paying, they will definitely feel that it is a breach of the Privacy Policy that should have been placed upon the original company's website.

 

I also think that this will cost more to set up and run, then the amount of people that will be interested in this type of hosted service. You're talking about having to pay for a server (leased or colocated), paying for a full license for WHMCS, paying extra for the dedicated IPs, and paying for those SSL certs.

 

Do you really think you'd have the time, knowledge, and money to start this up? Even so, I don't see the demand being very high, namely because people want to have this own their own servers, and limit the amount of access to hard copy files (MySQL databases) as well as not having to pay extra when they could utilize their own services.

[Nathan123]

I have also voted no as I agree with the others.

[trine]

Interesting idea for startups perhaps, but anyone serious would already host the company data on a server they fully control and only for the company use ... IMO

[SpookedOut]

I would hope that the utilization of NetBSD and other security methods wouldn't be a problem... However there are going to be issues irremediable, and those are being taken into consideration.

 

I anticipated that those of you whom already host WHMCS on your own infrastructure would strongly disagree against this. However, newly starting companies may benefit accordingly. I hope to see this idea merge and benefit those interested.

 

It's a win, win situation!

 

Hope that helps...

[MACscr]

Its impossible for you to do it securely without using VPS's and still thats not completely secure. WHMCS should NEVER be hosted in a shared enviroment. AKA, other sites on on the server. Its highly irresponsible and as a client, i would be pissed if i found out my host storing my personal information/credit cards on the same server as others.

 

If you end up doing this, you better have air tight policies or else your going to get yourself sued by so many people if that server would get compromised.

[eNetHosts]

Just been discussing this with my colleague and we both agree that:

 

The data protection issues to this would be extreme. Especially under UK law as technically the controller of data would be the company but the server holding the data would be a totally different controller.

 

Fair enough if you get hacked on your own server due to your own lack of care for Data Protection then that's your problem but if any one plans on hosting a tonne of WHMCS areas the liability could be on the doorstep of the server controller...

 

- and no decent host is going to turn round and agree to ToS for WHMCS hosting that says.

 

"Your WHMCS area is hosted on our server but we disclaim from any responsibility for loss of data, hackings or legal action taken against us for your failure to protect data appropriately under law."

 

Well we would hope not anyway!

 

Plus the central server would become a hackers target.

 

Instead of having many widespread servers for hackers to try and hack into let's just bring all the WHMCS Client Area's together and give them one server to hack into.

[Adamski]

 

I anticipated that those of you whom already host WHMCS on your own infrastructure would strongly disagree against this. However, newly starting companies may benefit accordingly. I hope to see this idea merge and benefit those interested.

 

It's a win, win situation!

 

Hope that helps...

 

I'm sorry to seem negative but why would newly starting companies not just use their own infrastructure? If they are not competent in running their own billing software they sure aren't going to appear competent to run someone's site!

 

How exactly will this work? I have a website mydomain.com. WHMCS is installed at http://www.mydomain.com/whmcs. How would that redirect to the server without losing my domain?

[MACscr]

 

I anticipated that those of you whom already host WHMCS on your own infrastructure would strongly disagree against this. However, newly starting companies may benefit accordingly. I hope to see this idea merge and benefit those interested.

 

It's a win, win situation!

 

Hope that helps...

 

I'm sorry to seem negative but why would newly starting companies not just use their own infrastructure? If they are not competent in running their own billing software they sure aren't going to appear competent to run someone's site!

 

How exactly will this work? I have a website mydomain.com. WHMCS is installed at http://www.mydomain.com/whmcs. How would that redirect to the server without losing my domain?

 

LOL, you might want to be careful about making the comments about other hosts that you just did and then asking a question like that. =P

 

They would simply direct a subdomain to an IP hosted at another host.

[SpookedOut]

eNetHosts: I can see your point, about the security issues. Those would be addressed with the use of DoS protection, Firewall, IPTables etc etc. It would be a very secure framework.

 

onestopad: You would simply create an A name record or a CNAME depending on each individual setup.

 

This was primarily designed for those of you, who wanted WHMCS hosted in a secure framework. Daily backups (Which most don't do, let's be frank!), Hosted separately incase your own companies infrastructure goes down and giving you peace of mind hopefully. They were the intentions

[Adamski]

Yes thanks MACsrc I know about subdomains and also how to redirect them but my questions was what if it was installed in mydomain.com/client not client.mydomain.com?

 

My point being that not everyone uses subdomains or wants to...

 

Spooked - I think you have a good point with regards to it being somewhere else if there is a problem with your own infrastructure!

[MACscr]

SpookedOut: how would you handle the security of the mysql databases, apache, and php?

[Nathan123]

Are you still doing this SpookedOut?

[PPH]

While I voted no, I believe there are users out there that would want the service as they might want their support system on a server that might be up should servers experience downtime on their network. Also it seems many are resellers that have trouble getting the server admin to set up their server whereas all functions are that are needed are installed. Also problems with server updates where the new config isn't whmcs friendly and they may or may not get the server admin to fix it.

 

I have to agree though that it would then become a target for hackers since there would be more info stored in one location.

[trine]

I also voted no, for my reason stated above.

 

Someone mentioned doing this as a VPS... even though in theory it may be a bit better, it is not any more secure than a secured hosting environment, let alone the fact that the VPS itself would need to be secured.

 

Best policy, is get your own ded server only for this. If anyone is interested in low-end servers starting at $59 that are more than powerful enough to handle WHMCS + your site and some..., feel free to PM me.

[SpookedOut]

Finding the appropriate platform to host WHMCS whether its a VPS or a dedicated server, doesn't really matter. It's the way in which it's hosted, and I think that's an important factor which you have to consider, especially for those of us who depend on WHMCS and can't afford it to go down.

 

It's also important for active security measures, that doesn't mean to say that your servers aren't secure when they probably are. However I was going to go above and beyond to ensure maximum security, in compliance with state laws and the data protection acts.

 

Hope that helps!..

 

Tom

[SpookedOut]

Nathan123: Yes I'm still doing this, regardless Please PM me for more information and that goes for anybody else too

 

Tom

[Nathan123]

Nathan123: Yes I'm still doing this, regardless Please PM me for more information and that goes for anybody else too

 

Tom

 

 

Okay, let me know some more information.

 

I noticed your site redirects to whmcs now, why? I liked your main site.

[trine]

Tom, I wasn't trying to offend you in any way, but I still feel strongly about what I and others have said.

 

Anyway, it is up to the individuals to decide, and despite the constructive criticisms, I am sure you will find quite a few interested people! Good luck!

[SpookedOut]

Trine: It's understandable, no hard feelings

 

SpookedOut is redirecting to the WHMCS client area, whilst the new site undergoes re-design. It hard a dark blue/black background It was very hard to work with. Learn one thing; Don't use dark backgrounds!

 

[Jordan]

I just think it would be unwise for a company to rely on ANOTHER service for their central billing/support system. Especially when it's another person running it, and you would have no control if this person just decided to run off, and let it all die.

 

You should just consider hosting a different script, then something as personal as this.

[SpookedOut]

I'm not 'running it'. The end-user/account owner is 'running it'. There are reasons as to why I'm offering an external hosted version, If you care to read previous replies you will see why.

 

When you say I have no control over this? I have 100% control, and I shall be suspending any accounts immedietely If they breach TOS/AUP in place without failure.

 

I believe that the 'WHMCS Hosted version' would in actual fact be 'securer, safer' then hosting WHMCS yourself. Here are the reasons as to why;

 

1. Unix based OS (not linux i.e. RHEL based, gentoo etc etc..)..

2. DoS/Firewall Protection..

3. IPTables in place..

4. Packet filtering and Network Address Translation..

5. Regular Daily backups (Please don't tell me, every WHMCS user does that!?)..

 

With such a small percent of servers running NetBSD, it makes it less likely that someone will discover an exploit, find a suitable target and manage to compromise it. Hopefully that will explain this concept of 'hacking attempts'.

 

Tom

[Jordan]

Tom, you are in fact running it. You are managing the server(s) that the "hosted" version would be on, you are handling everything in relation to it. You disappear, the servers go down, you leave a lot of screwed and p/issed off clients.

 

I was talking not referencing you, in my post, but the potential clients.

 

So you think that your hosted version, would be much better than what other hosts have set up on their website? Seriously, this is just an idea that will not work out. It's a great idea, but for what this is dealing with, it's not essentially something that will benefit you or anyone else, especially when the majority here already has their own instances of it running.

 

Sure you can find potential people, but do you really think that with their own hosting available, that they are going to want some joe-schmoe to handle something as important as their central brain hub? I think not.

[MACscr]

I'm not 'running it'. The end-user/account owner is 'running it'. There are reasons as to why I'm offering an external hosted version, If you care to read previous replies you will see why.

 

When you say I have no control over this? I have 100% control, and I shall be suspending any accounts immedietely If they breach TOS/AUP in place without failure.

 

I believe that the 'WHMCS Hosted version' would in actual fact be 'securer, safer' then hosting WHMCS yourself. Here are the reasons as to why;

 

1. Unix based OS (not linux i.e. RHEL based, gentoo etc etc..)..

2. DoS/Firewall Protection..

3. IPTables in place..

4. Packet filtering and Network Address Translation..

5. Regular Daily backups (Please don't tell me, every WHMCS user does that!?)..

 

With such a small percent of servers running NetBSD, it makes it less likely that someone will discover an exploit, find a suitable target and manage to compromise it. Hopefully that will explain this concept of 'hacking attempts'.

 

Tom

 

Again,

 

Tell me how your going to handle the security of php and apache. i can almost guarantee that i can hack all the other accounts if i had an account on your server. This is why i think its a horrible idea to ever put whmcs on a server where other people are hosting on it as well.