-
Posts
1137 -
Joined
-
Last visited
-
Days Won
37
Everything posted by PlanetCloud
-
I'm well aware inspect element can be used to get around this but at least users cannot accidentally register sensitive domains. See this topic: and the JS would be like "Whoops this is taken" or "Contains blacklisted keywords" before submit. If then someone were to register the sensitive/reserved keywords with inspect element or other ways.. we can blacklist their IP instead or something, as we now know they're malicious.
-
I got onto this late and I didn't read MOST of the posts but I say the JS to hide and restrict subdomains should be a Wybe plugin. @Anyx @AA22Dev. It should have a blacklisted domains (as in the hosting's cpanel domain), and blacklisted keywords.
-
The Never-Ending Always-Changing Off-Topic Thread
PlanetCloud replied to Burke Knight's topic in General Discussions
I'm not going to stop you.... I'm just going to beat you https://imgur.com/a/TCTvwCY Is this how I'm going to be suppressed from reaching 2K posts? Oh nvm it's now approved ^W^ -
The Never-Ending Always-Changing Off-Topic Thread
PlanetCloud replied to Burke Knight's topic in General Discussions
I see... Imagine if someone started a "chat" thread where people would "spam" messages there and raise their post count 🤔 -
The Never-Ending Always-Changing Off-Topic Thread
PlanetCloud replied to Burke Knight's topic in General Discussions
Was late to the party wow... and will be busy for the next few days as well. Yes I'm going steady with my 1001th posts and may soon reach 1003! aaaand where's byet chat? for some reason my chat are always invincible there 🤔 -
customizations VistaPanel Customizations (VPT Project)
PlanetCloud replied to Anyx's topic in MyOwnFreeHost General
Can't agree more.- 39 replies
-
- vistapanel
- vpt
-
(and 4 more)
Tagged with:
-
customizations VistaPanel Customizations (VPT Project)
PlanetCloud replied to Anyx's topic in MyOwnFreeHost General
Rest of the message: I am not a bot, I am a {{THIS_WORLD.WIKI.INTTELIGENCE_CREATURE.sort('desc').pop().take(1)}}. Thank You.- 39 replies
-
- vistapanel
- vpt
-
(and 4 more)
Tagged with:
-
customizations VistaPanel Customizations (VPT Project)
PlanetCloud replied to Anyx's topic in MyOwnFreeHost General
Beep boop ... To view the rest of the message please verify you're not a bot:- 39 replies
-
- vistapanel
- vpt
-
(and 4 more)
Tagged with:
-
Oooo I see, okay
-
Hi, I came waaay too late. You may find these interesting: https://github.com/InfinityFreeHosting/mofh-client/issues/41, https://github.com/InfinityFreeHosting/mofh-client/issues/46. It has response samples n stuff. also the library itself is cool and you should use it instead of making new one.
-
customizations VistaPanel Customizations (VPT Project)
PlanetCloud replied to Anyx's topic in MyOwnFreeHost General
I'm alive and not a bot. Here to say you're welcome.- 39 replies
-
- vistapanel
- vpt
-
(and 4 more)
Tagged with:
-
customizations VistaPanel Customizations (VPT Project)
PlanetCloud replied to Anyx's topic in MyOwnFreeHost General
You're welcome again. I'm still alive btw.- 39 replies
-
- vistapanel
- vpt
-
(and 4 more)
Tagged with:
-
customizations VistaPanel Customizations (VPT Project)
PlanetCloud replied to Anyx's topic in MyOwnFreeHost General
You're welcome.- 39 replies
-
- vistapanel
- vpt
-
(and 4 more)
Tagged with:
-
Xera Lite || MyOwnFreeHost Clientarea
PlanetCloud replied to Mahtab Hassan's topic in MyOwnFreeHost General
#UXMatters Then check the logic code again, as you can just call it and return. About this, I also have a comment... shouldn't have used a single letter for the file name as it violates PSR rules. PSR is a coding style standard that I and many others use so we can easily work on other's code. Also it's a security risk now I realized it... Check again https://github.com/PlanetTheCloud/mofh-callback-client. Good- 106 replies
-
- mofh
- clientarea
-
(and 4 more)
Tagged with:
-
Xera Lite || MyOwnFreeHost Clientarea
PlanetCloud replied to Mahtab Hassan's topic in MyOwnFreeHost General
I see this is definitely a huge improvements from the previous version. Using CodeIgniter framework and avoiding most common security vulnerabilities, however there are still some yet these are a bit harder to exploit such as storing password only using hash (prone to rainbow table attack), some confusing logic such as: if($res) { if($this->mailer->is_active()) { return true; } return true; } return false; That could have been re-written as: if($res) { $this->mailer->is_active(); return true; } return false; or: return $res; Depending if the $this->mailer->is_active() call is needed or not, and many others I see that can be optimized or be more concise. Also there's a possibility for spam attacks where Admin's password kept getting reset, and also check this out: https://github.com/PlanetTheCloud/mofh-callback-client. Other notable mention is that when I request reset password for non-existent email, it says that the reset is successful instead of error indicating email is invalid. Either change the message to be more neutral such as "Check your inbox. If your account is with us, you'll receive an email.". I haven't dive in much deeper in other parts of the site but generally this has fixed most of the issues. Congratulations!- 106 replies
-
- mofh
- clientarea
-
(and 4 more)
Tagged with:
-
vPanel Monstrosity (Easy fix for devs)
PlanetCloud replied to TinkerMan's topic in MyOwnFreeHost General
By the Support team? -
I've updated the code to include this feature. // Function to be executed when an account has been suspended $callback->onAccountSuspended(function ($username, $reason, ..., $common_reason) { echo "Account {$username} has been suspended with the following reason: {$reason}"; if ($common_reason) { $reason = str_replace(['DAILY_EP', 'DAILY_CPU', 'DAILY_HIT', 'DAILY_IO'], ['Entry Process', 'CPU Usage', 'Website Hits', 'Input/Output'], $common_reason); } echo "Your account has been suspended because the daily {$reason} quota has been exhausted"; }); You can handle the reason quite elegantly as well.
-
I'd like to point out that there's an issue with the domain availability API where if the account is being created but not activated yet, the domain can still be registered, as seen in the screenshot below: Both have the same main domain under different account. So you should not rely on MOFH API alone. # Check domain availability $domains = $db->select('accounts', 'id', ['main_domain' => $main_domain]); if (count($domains) > 0) { throw new Rejection('Domain is not available.'); } $response = MofhClient::availability($main_domain); if (!$response->isSuccessful()) { throw new Rejection('Domain is not available.'); } Here is my implementation to check the domain's availability. Please note that I make my own wrapper (MofhClient) to handle the errors that may be returned by the API. The errors are logged and will not be shown to the end user unless the DEBUG mode is enabled in the config.
-
What features should a webhosting provider have?
PlanetCloud replied to TinkerMan's topic in MyOwnFreeHost General
Ah yes, I see... is that price for 1 user or for hostin companies to implement their builder? I think there's a difference.... -
What features should a webhosting provider have?
PlanetCloud replied to TinkerMan's topic in MyOwnFreeHost General
Very limited IIRC