Security Plus+ for WHMCS

[griffinhosting]

Security Plus+ Adds another layer of protection to your installation of WHMCS, by providing the following key features -

 

 

• File change monitoring.
  

Keep tabs on all files, being notified when any changes occur.

Permanent log of all file system changes and upgrades.

File md5 verification against source files provided by WHMCS and 3rd party addons.

Quick verification of installed files – know right away whether they match original md5 fingerprints and are in the correct location.

 

• Client profile data validation.
  

Hook to detect suspected hacker attempts via SQL form injection – Automatically ban IP to allow further review by support staff.

 

• IP Blacklist provided by OpenBL.org.
  

Download known hackers IP addresses and automatically add to ban system in WHMCS.

Syncronize your hosts.deny file and automatically add known ssh brute force attackers.

 

• Fully automated file and database backup system.
  

Full and incremental file backups (no more wasted space with only full backups)

Database backups.

Remote storage support for FTP and Dropbox (more on the way).

Scheduled via cron job.

Supports moving of downloads and attachment folders as per WHMCS recommended settings.

 

• Detect and block disposable, one-time, throwaway, temporary email addresses.
  

Validate email addresses at registration time via api with http://www.block-disposable-email.com/.

(requires registration, and includes 200 free look-ups per month).

Optionally block free emails (gmail, yahoo, etc..).

Optionally validate domain has an MX record in DNS.

Optionally validate domain exists and is not expired.

 

• Now includes one year FREE Comodo PositiveSSL certificate (for the first year only, or $10 off any other SSL certificate).
  

Secure your WHMCS installation with SSL encryption.

 

All this for only $15 per year!

Visit us at - http://securityplus.griffinhosting.com/

or http://www.whmcs.com/appstore/3050/Security-Plusplus.html

[griffinhosting]

Now on sale for the rest of October - 50% off for life - coupon code - N7VIL3H0CW

 

 

FYI - if your tired of bogus accounts being created by users like "DMASTERPIECE" and/or "rooterz", this is the tool for you! easily add key words to search for on the registration form, and block them instantly.

[webhostau]

hi there, It appears "coupon code - N7VIL3H0CW" is not currently working.

[griffinhosting]

New version now available, and to celebrate, we are offering a 20% Discount for life until May 31th 2015. Coupon code - DUM1VY038V

 

 

New features in 4.0 –

Brute force login detection. Ban IP’s trying to guess your clients username and passwords.

Addedd SSH (SFTP) remote storage for automated backups.

Minor bug fixes.

New licensing system using the WHMCS licensing add-on.

[griffinhosting]

4.1 now available with the following new feature.

 

Block clients placing multiple fraud orders -

Clients with a current order marked as “fraud” can optionally be prevented from placing more orders.

[TheHackRepairGuy]

Well worth the cost and the developer is "extremely" reponsive (over the course of years). Can't imagine anyone doing real business using WHMCS without this app.

[griffinhosting]

Version 5.5 Released with the following new features -

 

• Minor bug and performance fixes and improvements.
  
• Now integrates with Fraudrecord (See https://www.fraudrecord.com/ for full feature list)
  
• Automated fraudrecord checks on every order.
  
• Runs in parallel to built-in Fraud checks provided by WHMCS (Maxmind, VariLogix, etc..) which allows you to do fraud checks from multiple sources.
  
• Settings available for admin notification and/or automatically setting order to fraud status.
  
• Ability to enable automatic re-checks of clients fraudrecord scores, notifying admins of any changes in the future. Keep up to date with all your clients activities.
  

[satsuke]

Is this support for WHMCS v.6?

 

Client Email Validation.

 

Force clients to validate their email address with an activation code before being allowed in the client area. (templates fully customizable to fit your needs).

We need to validate the email each login or for registration only?

[griffinhosting]

Yes, it works for all version up to 6.2.2

The validation is one time. New clients at registration time. Existing clients you can force them to validate once at their next login, or validate them yourself.