PPlanet

All good now for me. Thanks for the update.

Hi @Adriano Faria, it looks like since the upgrade to 4.7.6, two weeks ago or so, my Contact form is not working and I had not realised. It shows a confirmation as sent to whoever sends the message but it doesn't come through. I'm using it with topics created in a subforum and an email notification to admins. I don't have any extra field. Cheers.

Yes, (I think it's just an old "community support" style forum) but maybe someone here knows a solution to the main question which is: How to search posts made by guests?

I'm trying to access this old topic of mine: https://invisioncommunity.com/forums/topic/379256-how-to-search-posts-made-by-guests/?do=getNewComment (How to search posts made by guests?) It says that I have to log in as a client, which I have but it still doesn't let me see it. I remember that the solution was pretty good by moving all guest posts to a particular subforum via a database query. If anyone knows the (or a) solution I'd appreciate if you could post it here. Thanks.

Yes but I understood that Marc was saying that they had been created for this purpose (spam). Hence why I mentioned the case of one of my users with many posts from before whose account appears legit.

Yes, I know it’s not exclusive to IPS. But I don’t think it’s a case of spammers creating accounts at different years and leaving them dormant until now. They are gaining access to someone else’s accounts. There was a failed attempt of brute force on my site where the legit owner of the account confirmed it wasn’t him. But I think that this scale of log ins across so many sites corresponds more to some dump of credentials somewhere. I believe that’s the case, people using the same password across many sites, and there has been a leak in one of them. That said, it has stopped on my site. I had like 5 cases in total. I forced those accounts to change passwords and banned the IP in question.

I wonder though, as one account of these on my site had a history of normal posting with 31 posts between February 2017 and August 2020. All posts are on topic. No spammer would go into that trouble.

I'd say, ban that IP address to start with (They may get another one though but it will slow them down). If you don't use Cloudflare you can ban IP addresses in your .htaccess file. Also force the users whose accounts have been hacked to change password (click to change their passwords yourself and there you'll find that option) That's correct, I can confirm that too. It started before I upgraded to the latest version.

I have the same on my site. Maybe just a coincidence but one legit member whose account got locked for failed attempts replied to the automatic message to say it had not been him, so that made me think of brute force, but people using the same password elsewhere with a leak sounds more probable.

I’m afraid that I’m not familiar with that layout. If it’s a theme you bought from someone, you may want to ask the author.

Well, generally the sidebar only shows if you have any blocks or widgets there. I don't know if you use IPS default theme, but in that case you can edit the blocks on the page. To the left of the page there's a little rectangle with an arrow inside pointing sideways. Click on it and the page switches to edit mode, and you can delete the blocks on the sidebar. Not sure if that's what you are asking though.

What is your landing page? Is it part of the Pages App or is it the app actually called Landing Page? In any case, go to Applications and find the app in question. To the right you'll see there are stars icons, click on it. Please see example below:

Thanks! And to add more complexity to the question, I'd need the above but also the capability your app gives to move the "Mark site read" link to the dropdown menu. 🙂

Hi @All Astronauts, I'm upgrading my forum, so I'm also making the switch from the plugin version to the app one, which I bought a few minutes ago. Is there a way to avoid the native breadcrumbs template being replaced? Reason being is that I've edited IPS breadcrumbs template to have three links there like this here below: I can't remember how we solved this with the plugin version (as surely I ran across the same problem) but in the back of my mind I seem to remember you sent me an alternative version. But gone are the days of that being possible with the new installation method; so anything you could think of to make this possible? Cheers!

All sorted with the new version of the app. Cheers!

Okay, thanks Marc. I have already contacted the author. Cheers!

Okay, it's not the sort of app I can uninstall as I'd lose all the content. You reckon that if I upgrade it, that could solve the problem? (I would need to ask the author for a new version in any case for it to work with 4.7.6, so no harm in trying I guess).

Sorry for that, I have saved them again and logged in to the ACP with them successfully. Please try again. Thanks.

Thanks Marc. I have updated the info. Any problem please let me know.

Hi Jim, this is what they sent me: [Wed Jan 11 11:33:24.142989 2023] [:error] [pid 3981413:tid 47183587997440] [client 1XX.69.62.6:31730] SoftException in Application.cpp:261: File "/home/xxxxxx/public_html/forums.xxxxxx.com/index.php" is writeable by group [Wed Jan 11 11:33:28.384657 2023] [:error] [pid 3981408:tid 47183609009920] [client 1XX.69.62.7:45302] SoftException in Application.cpp:261: File "/home/xxxxxx/public_html/forums.xxxxxx.com/index.php" is writeable by group [Wed Jan 11 11:33:28.387403 2023] [:error] [pid 3981408:tid 47183609009920] [client 1XX.69.62.7:45302] SoftException in Application.cpp:261: File "/home/xxxxxx/public_html/forums.xxxxxx.com/index.php" is writeable by group [Wed Jan 11 11:33:29.842050 2023] [:error] [pid 3981412:tid 47183604807424] [client 1XX.69.62.7:45318] SoftException in Application.cpp:261: File "/home/xxxxxx/public_html/forums.xxxxxx.com/index.php" is writeable by group [Wed Jan 11 11:33:29.845165 2023] [:error] [pid 3981412:tid 47183604807424] [client 1XX.69.62.7:45318] SoftException in Application.cpp:261: File "/home/xxxxxx/public_html/forums.xxxxxx.com/index.php" is writeable by group I made the permissions identical to the index.php file of my live site which is 644, but unfortunately that hasn't solved the problem.

Okay, I'll try. Thanks.

Actually I found the server errors logs in CPanel, and there's nothing from today (after the upgrade) either. It has two parts, in the one that says Latest web server error log messages: the latest error is from yesterday and concerning another subdomain. And in the part that says Latest suEXEC event log messages: it has some entries from today like: [2023-01-11 11:32:37]: uid: (1003/xxxxxx) gid: (1005/xxxxxx) cmd: ea-php80 (I've replaced here the account name with x's, and I don't know if those are from before or after the upgrade. Not sure if they have any relevance or if they are just entries)

Hi @Daniel F I don't have any errors in the System log from today. Where do I find the server error log normally? I have access to CPanel and to WHM.

Hello, Luckily this is my test site, not my live one. Anyway, previously I was on 4.7.2 running PHP 7.4 and with three third party apps/plugins flagged as problems for PHP 8. Okay, I deactivated those 3rd party apps/plugins, switched to PHP 8. Ran the compatibility file, all good. I had to deactivate a 4th app though that had a problem only when I visited the forums index. But basically all was ready to upgrade. I downloaded the 4.7.6 zip file from here, all good. I uploaded the content via FTP, very slow upload as I'm basically overseas on the road, but eventually all was uploaded and no error message from the FTP program. I ran the upgrade with no problem, got the confirmation and the option to go to the ACP or the site. Three apps were locked by the scanner (including one which had not been flagged before nor did I had a problem running it on 4.7.2 with PHP 8), but anyway, all good on the ACP and I still have access to it. Go to see the front side, and all I get is a blank page. I disabled all 3rd party apps and plugins but I still get a blank page. I'm wondering whether to reupload all files again. It was painfully long the time it took the first time and nothing indicates it will be faster a second time, as I'm stuck with whatever internet connection I have. Any ideas please?

Is there a temp solution I could use?