Jump to content

Jim M

Invision Community Team
  • Posts

    8,695
  • Joined

  • Days Won

    41

 Content Type 

Downloads

Release Notes

IPS4 Guides

IPS4 Developer Documentation

Invision Community Blog

Development Blog

Deprecation Tracker

Providers Directory

Projects

Forums

Events

Store

Gallery

Everything posted by Jim M

  1. That would be who you need to contact then for assistance, I'm afraid. We would not supply support for something of this nature.
  2. Keep in mind, that is one instance out of many, many, many, many other breaches. Kind of like stating, all car accidents are the same 🙂 . Each breach is different than the next depending on the website and data the attacker obtains. More often than not username is stored and obtained, if it is available.
  3. Sorry, could you please clarify what you mean by copied? The copy function would only copy the forums, not the posts so the counts should be 0. Unless I am misunderstanding what you mean or you used a third party action to do so.
  4. We would only provide recommendations for PHP 8.1, MySQL 8 and only provide support for Apache. We would not provide any further recommendations to OS, etc..
  5. More information will come up in the release which we remove it but we constantly evaluate features in the software which are seldomly used yet cause us overhead a lot of evaluating/developing/supporting them. This is not to say this will change in the future or that a third party can't add this payment method in for you. Regardless though, at the moment, it sounds like these are getting deprecated so will not be available from Stripe themselves. Apologize that you found this not helpful. Sometimes without more information about the API usage involved, we're a little blind on why something may be getting reported that it is in use. In this case we could have reviewed your instance more or Stripe could have reported that you were using the API as outlined (they have this information as they're telling you you're using an outdated API 🙂 ). However, it is good to see that we got the answers we needed and apologize for any inconvenience here.
  6. There would be no means to do this via the core software. It would require a customization.
  7. We would need to review the given issue so whatever it takes for us to review it.
  8. Was the rule deleted? I am not seeing it present or have this user attributed to that rule.
  9. You will want to check your permissions in S3 as it cannot write in your given settings.
  10. I have moved this to a ticket to further investigate this for you. Seems unarchiving has completed but there are still some left over.
  11. It is provided as a means of what may have happened. Not a way to verify all. As mentioned several times in the topic, the hole here isn't the software but rather the human. Humans are using the same credentials on multiple sites and one of those other sites (not associated to IPS) gets breached, their credentials are now known. Thus, these spammers are logging in. The way around this would be implore Two Factor Authentication because this requires another set of actions to log in. This won't help past users but will help in the future. The other option would be to force password resets to all members but there is no guarantee that your users will insert already breached credentials.
  12. We are working with you on your ticket with this... Please be sure to reply there.
  13. Odds are their username is also in that breach.
  14. As mentioned several times in this topic, you will want to check to see if those email addresses have been compromised from other websites (non-IPS). You can look at https://haveibeenpwned.com/ Then take measures outlined in this topic.
  15. You would upload the full file set to the location of your community on your server, overwriting what is there. Then go to ACP -> System -> Applications to install your missing applications.
  16. This would indicate you're missing files so would want to do the manual upgrade.
  17. As you're updating from an old release, you may wish to perform a manual upgrade if the automatic upgrader is causing you problems.
  18. Yes. Users would supply their own answers, that is what makes it secure 🙂.
  19. You can select from a list or make your own questions. The user would select a question and insert their own answer.
  20. The install/upgrade utility will do a cursory check over your system. It also is available in ACP -> Support.
  21. MP3 and other audio files supported by browsers can be embedded in topics and played by the browser. The same goes for MP4 and other video files.
  22. In our Spam Defense settings, you are setting it up that every member needs to be manually reviewed prior to continuing on with validation settings. You will want to change this in ACP -> Members -> Spam Prevention -> Spam Defense. We recommend the following flow:
  23. You will want to read through the whole topic, as it discusses how spammers are logging into accounts which have had credentials compromised through other sites and posting spam on yours. Enabling Two Factor Authentication is the best way to combat this for the future. You may also wish to use the force password reset function, which is also discussed in that topic, on all members if you see this happening a ton.
  24. I would recommend reading through this topic here as it is related to this, if not the same issue:
  25. Custom buttons allow you to create what you want, like a button for a horizontal line. Stock replies are completely separate feature. You can also install CKEditor plugins.
×
×
  • Create New...