PlanetCloud

Since the reason for suspension comes in many shapes and sizes, I believe I shouldn't add a specific handler for each. Just onAccountSuspended is enough. For the reason, it is recommended that it is logged/saved to database along with the account. Sometimes the same reason for example "Disposable email" comes in the following format: DISPOSABLE_EMAIL and "disposable email protonmail.com". Would be hellish to code for each scenario.

Added new features: Before and after callback middlewares. Should help with logging.

Saying that "every" free web hosting provider should have the features said above is a bit too much...

A "Good" Free Web Hosting Provider should have those but not every one of them should. Many MOFH users are just people who are new to web development who can't even make their own systems yet, and we're not trying to shunt them down by saying "Hey you don't have this and that! Every host should have it". We welcome those who wants to experiment with things here, as that's how I manage to learn a lot of things, just by playing around with the things here and I hope many new developers can be empowered by the features provided by iFastNet.

Not everyone can afford Site.Pro integration (or implement it), not everyone can draw a mascot/pay someone to do so, etc. etc.

My point is that: Every hosting here should have the following features that has been provided by iFastNet from the start:

• A website indicating that this is a free hosting, signup form for the hosting, cPanel Link/Login link
• An active email that is monitored to receive complaints and support customers

Those are the most barebone minimum what every hosting here should have.

For advanced ones, they should have the following features:

• A non-free company domain, so you won't get locked out of your hosting when Freenom decided they will take over your domain and charge a premium for it because it has gained a lot of interesting traffic, and to look more professional.
• Advertisements placed on cPanel or website to help recoup the cost of the domain so you don't need to shut down after only a year or so.

and lastly, for Professional ones who truly wants to invest time and money into this, should have (some or all) of the features mentioned by @TinkerMan above as it is truly nice touch to the Free Hosting business.

IMPORTANT NOTE: All of those "features" are utterly useless if the company went under, lack management or support. This business is not something you can just setup and leave. You need to invest time and money into it. Take a look at the most successful, long-standing MOFH powered hosting: InfinityFree. It's not the client area nor the Site.Pro builder that makes them successful. It's years of proven reliability and dedication by the owner, by that I mean it had existed for years without many major outages, there are ads and or systems in place to ensure revenue coming in to keep the business from going under. The company also uses Cloud Platforms to serve the main site and client area so that it is fast and responsive (and cost money too!). The company also provides great support with max 2 days response and community forum to help with other questions. It is reliability and great support that truly matters in the end as customers/clients wants a reliable hosting to their website and support if needed to.

Edit: I consider reliability and great support as "features"

Received, thank you. I'll analyze it and make changes accordingly.

11 minutes ago, RoyalityFree said:

should I PM you the file?

Sure you can

11 minutes ago, RoyalityFree said:

all responses i recorded from mofh till now.

I would love to get that data and I believe it should be shared privately (because it contains usernames) or you can remove the usernames first and share it here.
It would be very helpful indeed.

10 minutes ago, RoyalityFree said:

do u want my data.json? I will share it  @Shen Wei i remember sharing u the file, do u still have it? Mind sharing it here pls?

What does data.json contains?

3 minutes ago, RoyalityFree said:

Nope, manual suspension by the reseller admin will always give a Suspend Deactivate response. Experienced  

Okay, what about the comments given? Does it include comments from previous suspension?

8 hours ago, TinkerMan said:

For Entry Process Limit:       {"username":"uname_xxxxxxxx","status":"SUSPENDED","comments":"ADMIN_CLOSE : DAILY_ ep"}

For Daily Hits:     {"username":"uname_xxxxxxxx","status":"SUSPENDED","comments":"ADMIN_CLOSE : DAILY_HIT;"}

For CPU Limit:       {"username":"uname_xxxxxxxx","status":"SUSPENDED","comments":"ADMIN_CLOSE : DAILY_ cpu"}

For Inactive Account:        {"username":"uname_xxxxxxxx","status":"SUSPENDED","comments":"AUTO_IDLE;"} !!!This is the only one I am 99% sure on, the rest are correct!!!!

I noticed for the comments, if there are multiple suspension history, we'll receive it all like this: 

OTHER_CLOSE; REQUESTED OTHER_CLOSE; OTHER_CLOSE; NULLED_SCRIPT

Is this always the case or only for manual intervention/suspension?

I've updated the code, take a look: https://github.com/PlanetTheCloud/mofh-callback-client

On 5/2/2022 at 2:08 AM, BastelPichi said:

@PlanetCloud Theres also a delete function, when a suspended account gets deleted. Example:

('username', 'fhts_12345678'), ('status', 'DELETE'), ('comments', 'fhts_12345678')

Oooo I see, I'll add this, thank you.

4 hours ago, TinkerMan said:

Also, it is possible to remove the softaculous link from the panel. 

It is but why would you?

Hi,

I've created a new library to handle Callbacks from MOFH Api.

Here's the link: https://github.com/PlanetTheCloud/mofh-callback-client

If there are callbacks that are missed, please let me know.

Thank you.

22 minutes ago, Wnew said:

Hi @TinkerMan, i created a script for you: i can remove softacolous and email section but the sitebuilder i can't remove it.

Just add in advert control this advert:

<script>
  function changeStyle(){
    var element = document.getElementById("soft_div-group");
    element.style.display = "none";
}
function changeStyle(){
    var element = document.getElementById("email-group");
    element.style.display = "none";
}
</script>

 

Hi, can't help but wonder won't the second function overrides the first and is this automatically called?

4 hours ago, BastelPichi said:

Would be possible if you just add it to your client area as filter, I bet there are swear word detection apis out there. (You can easely create accounts even if the signup form isnt there anymore, but that would scare off most people...)

Also maybe add cdn to the list.

Yes, but I dont think I should limit that or rely on another 3rd party. However Ill consider.

On 4/27/2022 at 5:10 PM, Bleep Bloop said:

I wont mind blocking swear or slang words to protect my reputation. Or getting suspended by ICANN lol

Yes I know this may be a good idea but this is outside the scope of this topic I believe as if we are just trying to secure the most "authoritative" subdomains so our clients won't get tricked/phished/scammed/anything bad.

But I would keep that in mind and I think optionally we can block swear/slang words as well but that would be a very, very long list

I see, good idea. Maybe a script to register all these would also come in handy

Is it smart to just add these subdomains under the main reseller account?

11 hours ago, MS-DOS said:

Hi,

Yes these subdomains should be blocked CMS like WHMCS offer this option we can on our side moderate that but the registration form is not they should add it

Hmm, do we have to configure what to blacklist or is there a default list that are automatically blacklisted? If so, can you send the list here?

Here's the current list:

$reservedKeywords = ['support', 'help', 'api', 'app', 'system', 'admin', 'team', 'administration', 'mail', 'mailer', 'cpanel', 'control', 'auth', 'smtp', 'imap', 'webmail', 'signup', 'signin', 'vpanel', 'register', 'login', 'forum', 'panel', 'server', 'phpmyadmin', 'client', 'tutorials', 'tutorial', 'blog', 'staff', 'dash', 'status', 'dashboard', 'manage', 'server', 'root', 'client-area'];

2 minutes ago, BastelPichi said:

cpanel is already reserved, as theres the cpanel on it. Heres my list:

smtp, imap, webmail, signup, signin, vpanel
for api and app, isnt there a 4 letter minimum lenght for subdomains?

Oh the minimum is 4? Ah.. looks like there are a lot of things I've forgotten about these.

Thank you for reminding me and for your input.

EDIT: Current list:

$reservedKeywords = ['support', 'help', 'api', 'app', 'system', 'admin', 'team', 'administration', 'mail', 'mailer', 'cpanel', 'control', 'auth', 'smtp', 'imap', 'webmail', 'signup', 'signin', 'vpanel', 'register', 'login'];

The 3 character ones are still included just in case..

Hi, when we allow users to signup with our subdomain, they can pick quite dangerous subdomains such as "support" or "admin". This may cause confusion and or be used as a weapon to attack other clients, making them think that they're actually the authority from the hosting provider.

Such keywords should therefore be reserved. Question is...
What other keywords should we reserve in order to protect business integrity and our clients?

Here's what I got so far:
support, help, api, app, system, admin, team, administration, mail, mailer, cpanel, control, auth

*Note: I'm not trying to blacklist swear words

Understandable, no rush as well. Thank you for the great service

On 4/1/2022 at 1:53 AM, BastelPichi said:

This is a common mistake made by many people here. You can change the username field to domain, and use any domain you like. The main domain then will be a long, random string starting with dom. Heres an example: dom6734bf19eb53af132c3093f57bf31cfd.duco.ga.

So modifying project logged wouldnt be that hard, however using a custom domain as a main domain is not the best option (in my eyes).

Oh is that so? Hmm this information may be useful...

So just to confirm, the only domain extension that will have a problem is the .tk extension?

PHP 7.4's Active Supports officially ends in 4 months.

Would be nice to have PHP 8 support implemented.

Thank you.