Jump to content

Randy Calvert

Clients
  • Posts

    3,636
  • Joined

  • Last visited

  • Days Won

    71

 Content Type 

Downloads

Release Notes

IPS4 Guides

IPS4 Developer Documentation

Invision Community Blog

Development Blog

Deprecation Tracker

Providers Directory

Forums

Events

Store

Gallery

Posts posted by Randy Calvert

  1. So you asked someone who literally knows nothing about the software, its security or configuration and you expect them to know what they’re talking about?  That would be like going up to a random police officer and asking them who committed a crime in your country without them knowing anything about the circumstances. 
     

    Based on my personal experience… I have seen numerous circumstances where accounts have been created by spammers that instead make a few “innocent” posts and several months later come back and start spamming. In researching the account IP that posted the “innocent” content was posted from a VPN where the spammer would attempt to mask their real IP. They would switch to a different VPN IP for spamming. 

    If this was truly a situation where it was a software level exploit it would not happen with just a few accounts. A majority of the accounts would be used including admin/moderator accounts. It would also be impacting EVERY single board. 

  2. You don’t for a VPN.  IPS would not  control the Cloudflare site they are visiting to adjust the settings. They would have to tell their customers to turn off cloudflare for their site while troubleshooting. 

    For what can you do as the site owner?  Turn off all bot related protections. That will help you confirm it is a bot issue. Once confirmed, you could whitelist your server’s IP. If other third party servers are also accessing the IP, you might have to whitelist those IPs as well. 

  3. There is no way to "undo" an account delete.  You would need to restore from a backup.  If this is important, you need to do it sooner than before so you don't keep losing data since your last backup.

    Regarding changing email, I just changed my email on this site and my personal forum and don't have that behavior occurring.  Do you use some kind of 3rd party app or login system? 

  4. My suggestion would be to give it full permission.  If IPB is kept in its own database with nothing else in it, there is no risk to it having full permission.  It should not be interfering with other applications.

    Restricting permissions only can lead to problems later when it potentially can't do something it needs later and you think the software itself is broken when it's instead just a platform configuration on your side.  A few months down the road, you're never going to remember this and it will be a big mess and waste of time figuring out how to fix the issue when it could be avoided in the first place.  

    You're not really increasing the security of anything as long as you keep IPB in its own DB without other applications installed in it.  

  5. This is highly dependent on how exactly it was installed.  You would want to delete any Wordpress files.  If those files are in a specific folder, it would be a simple as deleting that folder.  If you mixed it in with IPB files, you would have to sort out what is which and only delete the Wordpress files.  If you don't know which is which, you can download a set of IPB files from your client area and look at what directories, files, etc are associated with IPB.

    If your Wordpress is installed in a separate database, you could simply delete that database.  If it's shared with your IPB install, you would need to manually separate those as well.

    If you had any 3rd party integrations to tie your Wordpress to your IPB, you would want to remove those as well.  

  6. You are looking at the wrong space. The error message tells you where is out of space:

    Disk full (/tmp/#sql-temptable-70e-3aef8-cea.MAI); waiting for someone to free some space... (errno: 28 "No space left on device") (1021)

    The /tmp/ partition is basically like a separate drive on a Linux server.  It’s used for as you might expect from the name… TEMPORARY files.  Restarting the server might temporarily clear some of those temp files but it does not necessarily solve why it’s filling up. 

    This is a servet issue you would need to discuss with your hosting provider. Invision can’t help troubleshoot server/hosting issues. 

  7. You might think about using the commerce feature.  Create a product such as "VIP Customer".  Give it a price (say $1000) and make it good for a year and set its renewal for a year.  Each year, create a new coupon code to the company and let the employee "buy" the package again with that company's coupon code when their current annual subscription expires.  So you might have COMPANY1-100% COMPANY2-100%, etc.  Next year make it COMPANY1-DISCOUNT2, etc.   

    You would want to use the product feature instead of the subscriptions in order to be able to provide a coupon code for it.  

  8. No.  It's not a ticket.  This is not a situation where a developer is needed to debug and understand your specific enviornment.

    This is something you will want to keep an eye on future version release notes to see if/when the change is implemented.  

  9. If they are using an IP address you previously banned, then yes... they would receive that error anytime they happen to be on that address.   You should be able to look up the member in the ACP and see the IP address they used and then compare it to what is in your banned IP list.  If the IP address is there (including as part of a bigger subnet block), you would need to remove it.

  10. There is not a way that I’m aware of to automatically add a tag by default without some sort of modification. Instead you could have NO prefix at all by default and then assign a prefix once a staff member resolves it. You can work with a 3rd party resource author to automatically add a tag by default to all posts. 

  11. If cron is not working correctly and you can’t get it working properly, you can either run it with your site traffic or use a third party to run it for you.  Personally I would look at the cron log and see if it’s actually executing. You should be able to see a log of it executing every minute. If you can’t find that, I would ask them to help you find that log. 

×
×
  • Create New...