Jump to content

Aiwa

Clients
  • Posts

    11,332
  • Joined

  • Last visited

  • Days Won

    98

 Content Type 

Downloads

Release Notes

IPS4 Guides

IPS4 Developer Documentation

Invision Community Blog

Development Blog

Deprecation Tracker

Providers Directory

Forums

Events

Store

Gallery

Everything posted by Aiwa

  1. I currently rely on an rsync cron run daily. The scripts are easy enough to make to ensure you get everything you need backed up. Configuration, databases, folders with dynamic content (user uploads). I have had to use the backups twice in 10 years, sadly. Though one of them was an on demand backup, manually trigger the backup task, so I could migrate more easily to another server. Just make absolutely sure that you’ve got a secure connection between servers.
  2. If you’re not running any other applications on your server, have you looked at IPS hosting? I may be wrong, but I think they have/had some deal with migrating from self hosted to cloud.
  3. I don’t trust hosting provider backups. A second VPS, with another provider, in another data center with sufficient storage for data and configuration backups. That VPS can be less CPU and RAM intensive, mine is 1 core with 1gb RAM, but may require larger amounts of disk space depending upon your needs. I run a couple of small forums, a handful of Wordpress sites, and the entire Atlassian suite on a single VPS, 8 cores, 32gb of RAM. Generally using about 12gb with another 4-6gb cache. I’m also using webmin. You should also consider if you’re going to be using the server for other services, e.g. email or others.
  4. Gmail ignores the . m.name and mnam.e go to the same inbox https://support.google.com/mail/answer/7436150?hl=en
  5. First, there is nothing ‘common’ about common knowledge 😄 Same goes for common sense. 😄 Different companies have different business models. No one of those models is ‘wrong’, they are just different. You can compare Apple’s App Store or Google store or Xenforo or vB to IPS’ model, each serves a different market. Bottom line, there is no right or wrong. There is healthy debate to see if the model can be steered. Keeping in mind steering ‘left’ may not be good for those who desire it to steer ‘right’. I also think IPS is doing right by the developers by holding off commission increases until COVID settles down. Another thing to note here, with the Marketplace in the ACP, developers have a broader reach, which hopefully means more sales, which I’d like to hope means developers keep their resources up to date.
  6. You make my point exactly. While you have graciously contributed to the MP, props given, you are not the type of developer that sells in the MP for a living. Such resources have a greater tendency to go unmaintained. Not saying you aren’t keeping your resource up to date. Many developers don’t just sell in the MP. They use their MP resources to get their name on the board with a reputation. Those devs then do contract work with private clients using IPS to truly make their living. We’ve most certainly strayed from the OP’s goal. Generally speaking, if you submit a ticket to IPS, and you’re not URL hoping frequently, they are sometimes gracious and do a reset without the fee. At least that was my experience some time ago.
  7. I know someone mentioned it before about devs maintaining an active license in order to sell in the marketplace. I pose a conundrum... How can a developer, selling in the marketplace, both develop and test their resource, for the latest IPS version, when they do not have legitimate access to the latest IPS version? I get that many are both afraid of change and concerned with making ends meet. Everyone is in a different place financially with both themselves and their communities. I foot the entire bill for 2 communities and their server out of pocket. One with all IPS apps and the other with all but one. Both licenses are always active. Can / would everyone do that? For the vast majority I’d guess no. But it goes to show the diversity of clients.
  8. Yeah, if I recall that plugin didn’t play nicely with other plugins. I’m sure it could be done again, with 3rd party or IPS, so long as it’s done with care.
  9. Both sides of the fence have valid points. The app, in its current form, is not a one size fits all. I’d like to hope it can get that way, but that depends on a lot of factors in play across many highly customized communities. It has great benefits, push notifications for one, but those benefits may not benefit everyone.
  10. 3rd party add ons from the MP cannot be encoded using ion cube or any other. If you have a custom app that is, that may be the cause. That said, you would have needed ion cube to begin with. The only app that I know of that was encoded was 3.3 Nexus / Commerce. If you have commerce, you might backup that directory, delete it, and replace it with new files. I would suggest putting in a ticket before doing that, though.
  11. Ion cube isn’t required for IPS. Do you happen to have latent files from an early 3.x commerce installation?
  12. Fair point... There is more than one way to skin a cat.
  13. It’s a reasonable request, hence why there is a 3rd party app to meet this need. I agree that it is a niche need, though. There are likely tens of thousands of communities out there, not all of which visit the MP. THANK YOU FOR 4.5 ACP MP!! ... How many have purchased the 3rd party app up till now? Likely no more than a few hundred. IMO, those #’s qualify as niche.
  14. @Pavel Chernitsky You make a good case for core vs 3rd party, however I fail to see how this particular feature lives within those borders. You primary debate seems to revolve around user experience, things that are visible to the user, that has a fallback. I don’t see how this falls in such a category. This is an admin only feature and something I see as a hot spot for 3rd party devs to step in for boards that require this feature. Yes there is risk with some developers leaving applications unsupported, or not providing updates when a new IPS version is released, that causes broken functionality. That said, if the app does serve as the hot spot mentioned above, another dev will pick up on the value of the feature and move forward with a replacement. Ideal, no. Probable, yes. Don’t get me wrong, I see value in your request. I simply disagree with the need of it being in core. I’d rather IPS focus on more valuable features.
  15. Doubtful, that’s why we 3rd party developers exist.. To cater to the little things that you need vs the features IPS releases based on a myriad of different data collection sources and interest. This topic has come up in the past and likely why there is a resource that has been in the Marketplace for it, for quite some time, on the order of years.
  16. Problem being any spam attempts that put in bogus phone numbers would count toward your Twilio usage. Any such system would need to be carefully designed to prevent abuse that could cost the board owner an untold amount of money with zero benefit over traditional email. Don’t get me wrong, I’m not saying it can’t be done... There are a lot of things to consider to ensure such a system can’t be abused and cost the board owner lots of $$$. Human readable code always gets out somehow. Any code written will be inspected for vulnerabilities and possibly exploited.
  17. Yup, I looking into this (for a different purpose) and this was the primary reason I let the project die.
  18. @OlympusRyan I’m afraid I’m unable to reply to your review and my DM for this account is turned off on this community. Could you please try submitting a support request again? I’ve verified that my mail and support systems are up and running and has been tested. Should you have any issues, please reply to this topic.
  19. It’s taking forever for mine to load here. Also, on mobile, having to click twice to get to notifications is a bit annoying.
  20. That’s because the inflammatory posts I was referring to were removed. I do agree that most of the quoted post of mine, or all of it, should also be removed. Welcome to the topic, based on your passion, it sounds like you have a lot of ideas. I’m sure other clients / IPS would be interested in hearing them as feature suggestions for IPS’ budding mobile app.
  21. For a new custom app, you’ll want it created in a test environment not directly in production. Simply best practice development and deployment workflow. The same should hold true for anything purchased from the marketplace if you have the facilities to do so. IPS does testing, but ultimately you’re responsible for ensuring it works with your custom community.
  22. It's not that the full form is not recommended, it's that it's not the simplest approach for most communities. For your use case, use the full form, control what fields you want on that form, and use profile completion for the rest. IPS wouldn't give you an option to control what forms show if a method was NOT recommended. That said, however your avatar generator works, it can be modified, if it was made right, to look for a change to the gender field at any point, registration or profile completion. This is a case of "you're holding it wrong".
  23. Ok, ban the IP within IPS. It's NOT going to stop the requests for files on your server. You just won't see it in your IPS logs anymore. The requests will continue to happen unless the IP is blocked at the SERVER level, or at least your account on that server. You're mistakenly thinking a ban within IPS would do any good in this scenario, it won't.
  24. I don't think you fully comprehend what's going on here.... The bot is attempting to access a FILE that lives on your server. Should that file be found, IPS would be none the wiser because your SERVER would deliver the requested file before IPS knew of the request. The ONLY reason you're seeing these errors is because the file WAS NOT found and the IPS .htaccess rewrites are funneling the unfulfilled requests into the IPS software. Where IPS proceeds to log the error you see. This has to be handled at the SERVER level. You simply can't ask IPS to manage file access on your server for you when the only reason they are seeing the requests is because they failed in the first place. Being on a shared host, you're going to be at the mercy of what the hosting company will install on their servers. This is a common thing that happens every day all day.... If you have a server with SSH open on port 22, you better believe that some bot is attempting to log into it at least once every few seconds. fail2ban is a wonderful tool there. What you're experiencing isn't any different. A bot is attempting, for lack of a better term, to brute force finding files by specific names. Any backups you take, don't put them in a web-accessible area on the server, and don't leave them there longer than necessary. Now, these logs are stored in the IPS DB. You can certainly write your own CRON job that will auto-fill an .htaccess ip deny file to stop these bots at the SERVER level. Because thinking IPS can block them, should the bot guess a valid file name, is simply wrong. It'd be an extremely false sense of security.
×
×
  • Create New...