User51

6 hours ago, BastelPichi2 said:

Just the Frontend is copied.

That's what I mean.

6 hours ago, BastelPichi2 said:

lol. .com only costs 8$ a year... (And smallhost.com is already taken and for slae, just 5000$...)

Small.host is a good alternative.

3 hours ago, smallhost said:

That may be a problem...SmallHost sites only allow 50k page hits a day and the speed test site I linked sends over 20 page hits to test it. I'll probably have to make another SmallHost account in order to do that (which can be done, but would take time). I'd also need to sign up for a competitors hosting platform to host a site there to test.

Yes you will have to do this

3 hours ago, smallhost said:

Again, I appreciate your feedback greatly.

Glad to help!

Glad to see you took my feedback positively!

On 2/26/2022 at 1:05 PM, smallhost said:

All MOFH resellers have a cPanel

It is (unfortunetely) not the real cPanel. It's called the "VistaPanel" and it is a control panel that is basically a copy of cPanel.

On 2/26/2022 at 1:05 PM, smallhost said:

The speed tests are not misleading and they have been conducted without bias

The speed tests are fine, but you have to test a website created *on* that platform, not just the website itself.

so, for example, instead of testing cpanel.smallhost.us.to, you would test a website made *on* SmallHost: for example, speedtestwebsite.us.to. Make sure it's a complete website to and not just a blank page.

On 2/26/2022 at 1:05 PM, smallhost said:

if I bought smallhost.com

Actually, that's a good idea. Currently the subdomain users get is subdomain.subdomain.domain.tld.

--

Glad to help!

I'll give my honest feedback on this site, I notice there are some problems.

1. Everything is written very informally, for example, "we're never gonna give you up", this really doesn't seem professional. On top of that, you shouldn't be saying "I", for example, you said "I made SmallHost," again this is very informal.
2. Barely an information given: The whole website is one page. All the links in the navbar belong in the footer. (Also you need a premium page otherwise you get suspended.) And the only page on your website barely lists any useful features (an online file manager, easy transfer to iFastNet, etc.), and most of them are downright lies (cPanel)
3. Very misleading. You say "Free Green Padlock (SSL)" but you don't offer one. The speed test is also misleading. You don't actually test websites made on those hosts, you only test the host's website, which of course will be hosted on different servers. Also, InfinityFree is also powered by iFastNet, so claiming you're "faster" than them is a lie. Also (again), a few MS in speed makes literally no difference
4. The terms of service are not written well, they are also extremely informal. The fact that Freenom is "on very thin ice with [you]" is actually kind of ironic because you use a free subdomain for your website, which in some regards, is even worse. And this is free hosting, most people are going to be using free subdomains/domains. Also, don't use "I" in the terms of service. 
5. The whole "coins" system. This is a host, why is there a currency system. And the fact that the only way to get coins is to join Discord is even worse. How many people wanting a website do you expect to have Discord? Discord is a chat for gamers. If you are going to include coins, include an official and automatic way of getting them.

Please, do fix these issues, I wouldn't trust handing over my money if I see a website that can't even get their facts straight.

However, there are good things about SmallHost: It (appears) to be aimed toward people just starting out. People with small websites or people with small businesses. It's good to have a target audience and have something you do really well. InfinityFree does this, they offer their hosting for more experienced users. Scala Hosting is known for their scalable hosting. Hostinger is known for their "cheap" shared hosting.

Please don't take this personally, I'm not trying to be rude,  but these are the first things I noticed as I came on this website. And chances are, it's what other people are going to notice too.

6 hours ago, BastelPichi2 said:

The MySQL is already there, however you need to have the Callback setup, and often, the callback dont works on free hosting.

Many people who run hosting companies use a premium host, so it shouldn't be a problem for some people

However thank you I'll look into it

4 hours ago, RoyalityFree said:

Added Account Label System! Link: https://github.com/MofhyDevs/AccountLabelSystem. That's all for this week! Please leave a feedback, I'd love to see them.

Haven't tried it yet but the documentation is looking pretty good ?

Nice! Looking forward to labeling system!

A few suggestions:

• Captcha for login/signup (although this is quite easy to implement)
• MySQL hostname in /viewaccount.php

Also, SitePro integration would be nice.

3 hours ago, RoyalityFree said:

Is not important, but worth. Check the chat for iFastNet' reply

I'd say it is worth it, if you run a fairly large host you can't answer a lot of tickets by yourself.

Also, here's the link https://prnt.sc/26v30cl Chat clears often that's why I'm posting it here.

3 hours ago, RoyalityFree said:

I removed it for royalityfree, basic php knowledge is needed!

I mean expiring tokens for log in

3 hours ago, BastelPichi2 said:

No, it was a real scam page. The Parked page only is on not registered subdomains

Oh. I'm 99% sure that iFastNet doesn't do that. Probably malware code, or it is a freenom domain.

30 minutes ago, BastelPichi2 said:

only have seen the suspendeddomain.org (and .com). Scam sites not yet, but maybe iFastNet does that.

IFastNet makes some pages goes to a parking page with ads, not a scam.

For example: https://thisdomaindoesnotexist.byethost12.com/

It generally goes there with subdomains that haven't been registered yet. Caching could cause an issue, which is why some people might see the ads

Some features I find to be missing in MOPHY-lite:

• Suspension reason
• A support system with iFastNet
• Token system

Glad to see development again with MOPHY-lite!

Nice !

--

I also recommend Flaticon.com for vector icons, and Pexels.com for stock images.

Here are some good datacenter images from Pexels:

• https://www.pexels.com/photo/black-server-racks-on-a-room-325229/
• https://www.pexels.com/photo/close-up-photo-of-mining-rig-1148820/

And some "coding" ones:

• https://www.pexels.com/photo/data-codes-through-eyeglasses-577585/
• https://www.pexels.com/photo/close-up-photo-of-programming-of-codes-546819/

Additionally, Unsplash and Freepik is also a good source.

These are all free, but Freepik and Flaticon require attribution.

54 minutes ago, PlanetCloud said:

If you still don't see the problem, it's the shortness of the string (8 characters only) which can easily be brute forced.

This I'm aware of, which is why I personally set the length to 30.

56 minutes ago, PlanetCloud said:

shuffled using non-cryptographically secure [2] function

Ah. That's the major problem I wasn't aware of.

So, let's say that you actually did have a fully random generator. And you had more than 8 characters. This would be more secure, right?

54 minutes ago, PlanetCloud said:

Also in reference 2, you can see a solution to the problem (though only partial solution, as the full solution is mentioned below):

Yes I agree that having an expiring token is a much better idea. I'll wait until a stable release with this is implemented, I'd rather not go messing with the code and the database for now in case a change is actually made.

For now, after making it fully random and making it much longer, this should provide a more-secure alternative to what we previously had (although it is still not a perfect system). This is also fairly easy to implement and remove later, so I don't see any drawbacks to doing this for now.

--

Anyway, thanks alot for the support! My apologies if these questions are stupid, still new(ish) to PHP.

--

Also, thanks to @Shen Weiand everyone else who helped with the client area, for actually developing an open source client area. I've seen some older posts from InfinityFree, who mentions he/she/they would not give away their client area,  as it's their main competitive edge (and I fully understand this.) Shen Wei did this anyway, and made it open souce. Respect for that.

--

Also (again) how come the original topics for Hustal and Mophy-Lite were removed by moderators? I didnt see anything wrong with them.

On 1/21/2022 at 2:51 AM, PlanetCloud said:

Not much needed to be changed but this is also a bad idea. Using a fixed/same string/token as a "remember me" token is a super duper bad idea because not only is the string short, it is fixed. That means unchanging for a long time (or even forever) and brute force can still be performed.

Correct me if I am wrong (and I probably am), but what would be the difference between brute forcing this and brute forcing a password?

3 hours ago, Shen Wei said:

MOARC is not yet released too. 

How easy would it be to switch from MOPHY-lite to MOARC after it releases?

2 hours ago, jamesblack said:

I already install my reseller free hosting website with wordpress

While you can use WordPress as a CMS, it's not recommended. It's best to just have a plain HTML/CSS website. MyOwnFreeHost offers some HTML templates at https://myownfreehost.net/templates.php (although they definitely aren't the greatest, and aren't mobile responsive.)

2 hours ago, jamesblack said:

but i confuse to how to make register page,

If you just want to use the default registration system provided by IFastNet, you must have a page named register.php with this form:

<?PHP
// This is used to geneate a unique number for catchpa 
$id = md5(rand(6000,PHP_INT_MAX));
?>
<?
// This is used to constuct the cPanel login ur>ol
include('geturl.php');
?>
<form id="updatedetails" name="updatedetails" class="signup" method=post action="https://order.<?echo $yourdomain;?>/register2.php">
  <table>
    <div class="form-group">
      <tr><th>Username<td><input class="form-control" type=text name=username size=30 value=""  maxlength="16" onkeyup="return ismaxlength(this)"><td>
    </div>

      <div class="form-group">
        <tr><th>Password<td><input class="form-control" type=password name=password size=30 maxlength="8" onkeyup="return ismaxlength(this)"><td>
      </div>

        <div class="form-group">
          <tr><th>Email Address<td><input class="form-control" type=text name=email size=30 value=""></td></tr>
        </div>

        <div class="form-group">
          <tr><th>Site Category<td><select  class="form-control" size="1" name="website_category">
            <option>Personal</option>
            <option>Business</option>
            <option>Hobby</option>
            <option>Forum</option>
            <option>Adult</option>
            <option>Dating</option>
            <option>Software / Download</option>
            </select>
            </td></tr>
        </div>

        <div class="form-group">
          <tr><th>Site Language<td>
            <select  class="form-control" size="1" name="website_language">
              <option>English</option>
              <option>Non-English</option>
            </select>
            </td></tr>
        </div>
        <input type=hidden name=id value="<?PHP echo $id; ?>">
        <tr><th>Security Code<td><div ><img width="250px" height="90px" src="https://order.<? echo "$yourdomain" ;?>/image.php?id=<?PHP echo $id; ?>"></div><td>
          <tr><th>Enter Security Code<td><input class="form-control" type=text name=number size=30><td>
            <tr><th colspan=2><button type="submit" class="btn btn-primary">Submit</button><td></tr>
        </table>
        </form>

If you want to actually have a client area, than you can use MOPHY-lite, an open source client area by Shen Wei: https://github.com/NXTS-Developers/MOFHY-Lite/

Install the script on a subdomain (such as clientarea.yourdomain.com) or a directory (cyourdomain.com/clientarea). Then, on your main website, have a button that links to the client area page.

2 hours ago, jamesblack said:

their data show up in my reseller dashboard panel

It will show up after they sign up.

2 hours ago, jamesblack said:

Are there any script or anything i must add either in my wordpress dashboard or reseller panel dashboard?

If you want a client area you can use MOPHY-Lite, as I mentioned above:  https://github.com/NXTS-Developers/MOFHY-Lite/ . This isn't a "WordPress script"  though.

6 hours ago, BastelPichi2 said:

et's Encrypt is a better SSL provider (in my eyes).

You dont have to register for any Reseller Account, the Rate Limits are really good, and Let's Encrypt has been just arround for more years. Also more Provider Options are simply better.

Aditionally, personally, I trust Let's Encrypt Certificates more.

This was probably a typo, you can use LE on subdomains, see in the main chat.

Checked it, thank you for the response!

8 hours ago, User51 said:

Also once Let's Encrypt is added are you planning on removing the GoGetSSL? (Hopefully not)

This question still stands.

This is just my opinion, maybe I'm wrong, what exactly is the point in offering Let's Encrypt certificates? You can use them on subdomains, and it's more confusing to the user to have to pick two options for an SSL provider. 

Also once Let's Encrypt is added are you planning on removing the GoGetSSL? (Hopefully not)

Either way good job!

2 minutes ago, Dimitris said:

Ive put them all in a page and added some few more as well. It's easy to download them as well

https://thfhost.ml/ifastnet 

Check it out and let me know  

Really like the subtle shading behind the "Powered by" and "IFastNet'.

Also like how you bordered the "Powered by VistaPanel" icons. Although the hosting isn't exactly powered by it, it's more of just the control panel used. Doesn't matter!

A little feedback on the Byet badge, it kind of looks like it says "Byet Powered by Internet services". I would honestly just get rid of "Internet Services and have a more square badge, with just the "Byet" logo and "Powered by" above it.

Regardless, these are awesome badges!

13 hours ago, Dimitris said:

Are these what you had in mind?

Yeah these look great!

33 minutes ago, TinkerMan said:

It is weird. I think "iFastNet" is the correct spelling though. I think.

Yeah maybe. The copyright on their website shows IFastNet, so I'm just assuming it's actually spelt like that and styalized as iFastNet (like iPhone) in the logo. Either way iFastNet can't spell their name right!

3 hours ago, Dimitris said:

Also I believe the ifastnet logo font is open sans

Thank you! Also congratulations on getting back your .ml domain, I'd recommend getting a free subdomain from FreeDNS (us.to) or eu.org. Its not the same as a real TLD, but better than what Freenom does with their domans.

3 hours ago, Dimitris said:

I'll try to generate one with the colors you mentioned as well as a byet one tomorrow. 

Looking forward!

Haven't seen these yet but good job @TinkerMan and @Dimitris! Looking good!

I think that a badge with "powered by" in green and "IFastNet" in orange would look nice, as these are iFastNet's primary colors.

Also if you are planning on having "Powered By ByetHost" I'd recommend using the Byet logo:

---

On a side note, does anyone know what font the iFastNet logo is?

Also how do you actually spell "iFastNet" ?? I see it spelt differently all over IFastNet's website... iFastNet, I FastNet, IFastNet, IFastnet...

Make sure you only either use the cloudflare nameservers or byet nameservers.

If you are still having trouble make a support ticket at https://support.ifastnet.com

6 minutes ago, PlanetCloud said:

Go to phpMyAdmin -> Select the database and table you want -> Go to Structures -> Change the type -> Save

Oh wow, it's as easy as that ? 

Thanks PlanetCloud!

Yes but, wouldn't their whole accounts be reset? The database will be completely cleared...