[Fraudrecord Blesta Module By Cubedata]

The php 7.1 support will be coming soon due to the needed ioncube upgrade been procured finally. 

[Blesta 4.0 Breaking API changes]

which is why you need a dev license you can get free from @Paul 

[SMTP issues - Blesta 4.1]

16 minutes ago, George A. said:

I have also tried that, but it's not working.

then talk to the developers of swiftmailer directly then? or use a cc processor that doesn't require you to use tls v1.2? as I usually only use paypal gateway since it handles both and each is handled off on paypal's site so I don't have to deal with no pci compliance which is why I am guessing you are enforcing tls v1.2 only on your mail system.

[SMTP issues - Blesta 4.1]

1 hour ago, George A. said:

Hello,

It's not a server issue but how PHP has implemented the default way to handle a TLS connection: which is TLSv1.

Found something. As per php docs:

Before PHP 5.6.7 :
STREAM_CRYPTO_METHOD_SSLv23_CLIENT = STREAM_CRYPTO_METHOD_SSLv2_CLIENT|STREAM_CRYPTO_METHOD_SSLv3_CLIENT
STREAM_CRYPTO_METHOD_TLS_CLIENT = STREAM_CRYPTO_METHOD_TLSv1_0_CLIENT|STREAM_CRYPTO_METHOD_TLSv1_1_CLIENT|STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT

PHP >= 5.6.7
STREAM_CRYPTO_METHOD_SSLv23_CLIENT = STREAM_CRYPTO_METHOD_TLSv1_0_CLIENT|STREAM_CRYPTO_METHOD_TLSv1_1_CLIENT|STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT
STREAM_CRYPTO_METHOD_TLS_CLIENT = STREAM_CRYPTO_METHOD_TLSv1_0_CLIENT

From swiftmailer the file /vendors/swiftmailer/swiftmailer/lib/classes/Swift/Transport/StreamBuffer.php. I have commented out line 94 and added:

$crypto_m = STREAM_CRYPTO_METHOD_TLS_CLIENT;

if (defined('STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT')) {
	$crypto_m |= STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT;
	$crypto_m |= STREAM_CRYPTO_METHOD_TLSv1_1_CLIENT;
}

return stream_socket_enable_crypto($this->_stream, true, $crypto_m);

But I still can't make TLSv1.2 work. What am I missing?

 

Kind regards,

George.

read the github issues on that:

https://github.com/swiftmailer/swiftmailer/issues/598

which is suggested to do this instead:

https://github.com/swiftmailer/swiftmailer/blob/5.x/lib/classes/Swift/Transport/StreamBuffer.php#L95

change this from:

public function startTLS()

{

return stream_socket_enable_crypto($this->_stream, true, STREAM_CRYPTO_METHOD_TLS_CLIENT);

}

to 

public function startTLS()

{

return stream_socket_enable_crypto($this->_stream, true, STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT);

}

that will force swiftmailer to only use tls v1.2 not any other version.

[SMTP issues - Blesta 4.1]

3 hours ago, Paul said:

It is most likely related to your enforcement of TLS 1.2, whether the issue is with Swiftmailer itself or your PHP & OpenSSL I don't know. I found this though https://github.com/swiftmailer/swiftmailer/issues/598 which seems to indicate (look at the comments) that Swiftmailer does not implement its own crypto but relies on your PHP.

possibly they forgot to install php-mcrypt, and other related php extensions like it? as I have them installed and don't have any issues.

[SMTP issues - Blesta 4.1]

8 hours ago, George A. said:

Hello,

 

I'm using postfix with enforced TLS connection on submission.

 

If it was a server side issue then all other websites would have the same problem, but it's not the case.

 

Kind regards,

George.

more debug logs from blesta then?

as I would check to see what blesta is saying when sending it for your answer.

[Blesta Logs Permission Error Causes White Screen]

4 hours ago, Blesta Addons said:

i have not checked the code to verify how the log file is created, but i don't think is created by a cron . is the probleme is a owner files then the apache should be run with the domain user owner .

which Control panel you use ? which OS you use ?

 

no control panel only plain ssh/cli on centos 7.

and I already resolved it for myself using what I said to cam.

[SMTP issues - Blesta 4.1]

1 hour ago, George A. said:

Hello,

 

I'm testing the latest Blesta version 4.1. I have configured the SMTP login details but when I'm sending a test e-mail the error is as follows:

Sep 24 20:25:03 ***** postfix/submission/smtpd[22156]: connect from *****[*****]
Sep 24 20:25:03 ***** postfix/submission/smtpd[22156]: SSL_accept error from *****[*****]: lost connection
Sep 24 20:25:03 ***** postfix/submission/smtpd[22156]: lost connection after STARTTLS from *****[*****]

 

Which means the application is not establishing a proper TLS connection, even tough in SMTP Settings the SMTP Security is set to "TLS".

What's the solution to make TLS work?

 

Kind regards,

George.

what mail server are you running?

as I use zimbra ose as my mail server stack and don't have any problems currently with blesta & tls smtp encryption.

[Blesta Logs Permission Error Causes White Screen]

3 hours ago, Blesta Addons said:

i don't believe this is related to cron. is related to PSR monolog , what is the output of the fallowing command :

ls -alh /home/username/ (root directory of your website) .

 

yep that is the root cause though when you run the cron as root that causes psr monolog to create the log files as root therefore preventing itself and apache from writing/reading it hence this error.

[Blesta Logs Permission Error Causes White Screen]

On 9/20/2017 at 12:26 AM, camgullo said:

Hello,

I am running into an issue where any new logs are created with permissions 644. When the logs are created with permissions 644 my client area pages white and won't let any clients access their accounts.

I am able to change the permissions for the logs and this will temporarily fix the client area for the remainder of the day until a new log file is created. 

Anyone know how to fix this?

Thanks,

Cam

try running the cron as apache(if on centos) or www-data(if on ubuntu) for blesta as that resolved it for myself though aren't you related to the person who took over ftpit lol ?

since people want copy & paste to fix this run this in root ssh on the vm/machine with blesta on it

centos:

crontab -u apache -e

press insert

paste line given to you by blesta for the cron

press esc

type :wq

remember to remove the cron line from root cron if you put it in there like this:

crontab -e

press insert

delete all lines to leave it blank.

press esc

type :wq

fixed

ubuntu:

crontab -u www-data -e

press insert

paste line given to you by blesta for the cron

press esc

type :wq

remember to remove the cron line from root cron if you put it in there like this:

crontab -e

press insert

delete all lines to leave it blank.

press esc

type :wq

fixed

[support for java license client in license module]

34 minutes ago, mrrsm said:

The private key is the rsa private key that is saved on the server side.  They are just doing something strange by signing with the public key in the client. I'm hoping someone on the Blesta end can shed some light onto why it is done this way as most libraries won't let you do this.

This is the stackexchange post I found about signing with a public key for whatever, if anything, it is worth https://crypto.stackexchange.com/questions/2768/signing-with-public-key

I suggest @Paul @Tyson @Jono @Cody answer this for you lol.

[I need a developer Blesta]

31 minutes ago, Andrea said:

Hi everyone, I need a developer Blesta who can do me paid jobs for me. I need to put some things in the web site and maybe keep a lasting relationship over time.

have you not looked over the developers listed by blesta?

https://www.blesta.com/development/

hint CubeData(my company) and @cyandark is on there 

[Who Am I]

1 minute ago, bdacus01 said:

See it's all about learning.  I learned about your module.  You learned your info isn't up to par for regular old joes like me...  it's all good now.  Remember from now on you never know where next few buck may come from...  

So can I use the native maxmind with it as well?  Or can I only use one or the other? 

well according to paul both maxmind & this one could be used at once there is supposed to be a core issue for it but don't know the link off the top of my head.

[Who Am I]

12 minutes ago, bdacus01 said:

Yes sir I am....   I am glad you noticed.  We won't discuss that here.  I would simply ask you to tell me about your module?  You know like to someone who might want to purchase it.  Feel free to email me back?.  Shall we say Take 2...

the problem with explaining the module is what is there to explain about a anti fraud module like maxmind for blesta lol? 

though mostly I will just copy and paste what I wrote on my fraudrecord page: https://cubedata.net/fraudrecord

hmm that page was more bland then I thought it was lol

maybe I should point you to http://fraudrecord.com

that is basically a blacklist like spamhaus you could say for bad clients who chargebacked against you, did public threats, etc(I cannot name all the reasons they can be listed for) but it is very helpful since it is basically hosting providers helping each other with valuable information on spammers,etc that you can see if there listed or not and know whether to automatically deny them or not so you do not have the headache and trouble like the provider that reported the person did.

also @bdacus01 I want to say I am not very good at handling PR(Public Relations) so I apologize if the product page was lacking in information on what it does.

besides I think my best "sales pitch writeup" was in my thread for it here: 

 

I admit I haven't updated the opening post with fresh screenshots from v4 of blesta but I will get to that soon enough

[Who Am I]

2 hours ago, bdacus01 said:

Well like I said still in the research and investigation stage.  In general shared hosting, and domains maybe.  I am not a coder so no dice there..  I have currently tried or studied:

debian, red hat, centos, ubuntu, arch, gentoo, and bsd  My Current choice is CentOS 7

Interworx, directadmin, cpanel, plesk, vestacp, webmin, and CWP  I like and would use CPanel and Plesk.  Currently using CPanel.

Blesta and clientexec.  Haven't tried whmcs or hostbill  (seems costly.)  Currently using Blesta.

I have accounts at NameCheap, Hover, Gandi, InternetBS, NameSilo, Resell.biz and Enom.  Not sure I prefer one.  Currently use NameSilo as a user not reseller.

learning about KVM and Virtualizor maybe SolusVM next....

Have looked into Maxmind, FraudLabs, and Fraud record.  Seems like Maxmind is the favorite.

From the business side.  I have looked into becoming an LLC.  Looked at Paypal, Stripe and Square.  Also looked a Xero and Freshbooks. (I don't see integration there in Blesta).  

Well I am sure I left out a bunch of stuff..  Anyway its no rush just learning.    I like the community here..  No body has yet to bash me.. so seems comfortable.  Relationships matter to me.

Thanks

 

so are you the one that asked in my ticketing system asking about what my fraudrecord anti fraud module does lol? 

[[Module] cPanel Extended Module for Blesta (Broken)]

1 hour ago, agentmishra said:

hello every one

when i try to signup and create a user, i get this error

 

Invalid client group ID.

Invalid client ID.

if i may get help?

ah on @cyandark's blesta or what exactly? some context would be nice 

[Is licensecart a ghost now?!?!]

if anyone is having issues with blesta_cms not showing and showing 404 error instead

you might want to try this:

3. You need to then edit the `/config/routes.php`
Find:
```
if (file_exists(PLUGINDIR . "cms"))
	Router::route("^(?!" . $admin_loc . "|api|callback|cron|404|uploads|" . $client_loc . "|install|order|plugin|widget)", "/cms/main/index/$1");
```
Replace with:
```
if (file_exists(PLUGINDIR . "blesta_cms")){
	Router::route("^(?!" . $admin_loc . "|api|callback|cron|404|uploads|" . $client_loc . "|install|order|plugin|widget)", "/blesta_cms/main/index/$1");
}
```

I say the above because I got this part:

if (file_exists(PLUGINDIR . "cms"))

but I didn't notice the bolded part editing the file over putty

Router::route("^(?!" . $admin_loc . "|api|callback|cron|404|uploads|" . $client_loc . "|install|order|plugin|widget)", "/cms/main/index/$1");

so once I changed it to this:

Router::route("^(?!" . $admin_loc . "|api|callback|cron|404|uploads|" . $client_loc . "|install|order|plugin|widget)", "/blesta_cms/main/index/$1");

it worked I am hoping I help other people who either missed that since putty wasn't that big to see it or was tired and couldn't notice that until looking at the readme again lol

[Change Model Business]

On 8/31/2017 at 7:13 PM, Blesta Addons said:

From some weeks ago i have the idea to change Model Business of Blesta Addons, as the moment we offer free Opens source code or crypted files, also we offer paid addons licensed, and personally i hate the crypted files, i feel in love with open source, so i think to offer all my actual addons in open source format, with some change to the Model Business used, we plan to make Blesta Addons as  membership clubs with levels .

Default Level, this will be free membership that will give access to all addons related to this group freely .
Bronze Level, this membership will be with small fee annually (arround 9$-15$), this level give the client access to the default level addons and all related addons to this level .
Platinum Level, this membership will be with fee annually (arround 25$-29$), this level give the client access to the default + Bronze levels addons and all related addons to this level .
Gold Level, this membership will be with fee annually (arround 45$-60$), this level give the client access to the default + Bronze + Platinum levels addons and all related addons to this level .

So we will no longer provide separate (module/plugins/addons) , they will be included to membership package, that the client can download and use all the addons with a fix amount membership. all the plugin will become a open source version and not crypted anymore...

This is just a idea, nothing decided, and we will continue developing and releasing addons of blesta, some of what we have prepared to the community :

Modules : Virtualizor Extended, Digital Product Pro, Epp Registrar, Logicboxes Reloaded, Logixboxes Gsuite, Memebership (change client group besed on package),
Plugins : Admin Tools (Rewrite), Cms Pro (True Hosting CMS), Package Converter, Monolog Reader (Read Monolog files), News System, Cart Menu, Client Data (More data Stat), Cron Debugger, Store System

On Developpment :

Plugins : Affiliate System,
Modules : Ovh Domains, Ovh Vps
Themes : Adminlte (Upgrade to v4), Admin Core (Advanced Admin Theme),

I like this idea

+1 

[Is licensecart a ghost now?!?!]

1 minute ago, BlestaStore said:

No point, feel free to activate the "paid ones" you can cancel the reseller account since you've shown me what you think of me.

okay?......

[Is licensecart a ghost now?!?!]

Just now, BlestaStore said:

Doesn't sound like verifying to me. Just cancel the reseller account and you can be worry free.

hmm? well I will just unsuspend everything and reactivate the account since mostly I just wanted to hear from you 

[Is licensecart a ghost now?!?!]

2 minutes ago, BlestaStore said:

feel free to cancel the reseller account then Timothy.

I don't want to cancel it mike but I wanted to verify what was happening since all of this took me by surprise it would have been helpful if you could have let me & @cyandark know what happened hopefully as we are understanding and would have worked with you and taken away all "license fee's" for you until you got back on your feet so you could "resell" licenses free until you was able to afford them again. 

I tagged cyandark since he didn't hear from you on blesta_cms so was very confused since neither me him or anyone heard from you until now.

[Ioncube Error]

2 hours ago, George A. said:

Hello,

This is ridiculous. Where's that "we are different than WHMCS" attitude...

 

Kind regards,

George.

don't know I cannot say what paul is currently doing but for me I am currently waiting for the funds to come for the upgrade to the ioncube encoder to enable php 7.1 encoding though for my own stuff.

[Is licensecart a ghost now?!?!]

2 hours ago, BlestaStore said:

Hi there everyone,

I would like to deeply apologies for the inconvenience I've caused. I don't lie to our customers nor wanted this to happen. I didn't listen to Callum when I started out and I created a black hole with InterWorx (sales dropped minus free licenses) even though I paid for the un-used licenses hoping a few orders would come in, never happened. I somehow mucked up SolusVM where we  were paying out more than we had coming in, and then that went to the debt collectors. So to pay off SolusVM I went and took a full time job.

Callum broke his wrist in a bike accident he's recovering slowly so he couldn't help on the tickets, Matthew has been busy with his university work so hasn't had time either.

Then I ended up working to much and not being able to log into pay the invoices for Cloudlinux, Softaculous which was done when I could after I found out they were suspended.

About the future of Licensecart that will be announced soon. I do again apologies for the inconvenience and understand if you don't trust me, hate me or want to kick my head in. 

Kind regards,
Mike

Mike when you release a statement on licensecart's future please let me know since as a precautionary matter since I had no clue how this was going to pan out I disabled your account in my blesta for precautionary measures including suspending all licenses until I heard from you directly. 

[Ioncube Error]

53 minutes ago, George A. said:

Hello,

 

Any news from devs about my request?

 

Kind regards,

George.

you got $160 to spend on upgrading to v10 encoder to enable php 7.1 encoding lol? that is probably what all devs are waiting on the funds for that lol.

[Is licensecart a ghost now?!?!]

3 hours ago, Shane O-Mac said:

I do think they are dead, have not like no one from the company has even considered explaining what's going on about suspended licenses from other companies or to say sorry for the lack of responses,

 

even though they have been reading this post

try reading this I asked on there livechat?