Michael

We suggest the default settings for both of those fields, 80 to reject and 10 to review. The defaults are pretty conservative and unlikely to reject or require review for non-fraud orders. If you aren't sure, leave as-is and adjust as necessary once you get a feel for the scores.

It would be handy to have 3 options:
Ban email address (less effective for general spam as it is often fake (but helps when some idiot of a company decides to submit a "seo service offer" to your support department)) Ban domain (like above, is less effective for general spam, but stops you getting any email from a certain domain (SEO service offers etc) Ban IP (Handy if you get a lot of spam from a particular IP or range)

I got my shirt in this week too!

I do get spam from similar services. No way to combat it besides adding it to blacklist on the mail server.

Ok so this may not ever happen to Blesta but I think it would make this billing system one step further away from the competitiors. I believe it should be an extra module like you pay for it like the Licensing system (In development).
 
Non Admins:
 
You click a client's ID, you are then greeted with a box (Modal) asking you to enter the following:
 
- Client Postcode
- Clients Support Password
 
If you click cancel you are re-directed to the client list. If you enter the correct information you can then see the client's account.
 
Just like if you was phoning up Virgin Mobile (UK) or Sprint (US) you are asked for information before they can see your account, if you fail to do so they can't do anything to your account or even see it.
 
However Admins:
 
If you ticked the box on the Access Control List to allow Administrators to bypass Client Protection. They can view the client details just like now, edit their information too.
 
-------------------------------------
 
However the Support Password is NEVER shown to the administrators, just the client who can change it at any time. - Encrypted to ensure security. They first set it up on registration.

It changes with each new session.
 
In config/blesta.php look for this line: 
Configure::set("Blesta.csrf_bypass", array()); You can add controllers and actions to this array to bypass CSRF checks, for the client login it should be array('client_login::index') so the following should work:
Configure::set("Blesta.csrf_bypass", array('client_login::index'));

Most probably:)
Also hostredragon just in case someone miss-types

It was overcast here on Anglesey this morning (as usual). Cleared up about lunchtime, and has been sunny and hot.
 
There's no pleasing us brits, we complain when it's cold and raining, and complain when it's hot and sunny

I think that's a pretty common practice nowadays, especially for domains that have any kind of significant traffic.

I agree a bit but they aren't modern, social active nor cool haha oh and free.

It's still a work in progress, I wanted to finish up a little more before I put it up. Shouldn't be long, and it won't be 100% done but would be nice to get some feedback.

This is sort of in-progress but it's unlikely to make it in the 3.0 release.

I would like to see the client area built on responsive bootstrap. That would be awesome!

I love this idea, as for an example , if lets say a hacker happens to find out one of your employees logins this prevents that individual from stealing peoples information as easily.
 
Paswords not viewable to me is just a must, customer can have it reset instead. To me it is a common practice everywhere but the web hosting industry.

I viewed it on my mobile phone, and the logo looks rather awkward.. but I do like it!

I'll probably be ordering mine tomorrow...unless you know, you want to just give me one? lol Will be one of the shirts I wear at Defcon in Vegas in a month

I'm not no, back on Monday.

Hi guys can you guys just check over our layout for the final time for me please: http://licensecart.com/site/
 
The only things that need doing are:
 
- Privacy Policy 
- Terms of Service
- More screenshots for Blesta.
 
Thank you for your time guys
 
EU Cookie Law has been added - only shows once per month.
 
Brought:  licensecart.co.uk, licensecart.biz and licensecart.net

https://160693.spreadshirt.com/
 
The "Mens Blesta Shirt", I think the navy blue one is what Cody wore to HostingCon. Available in navy blue, green, and black.

If I have time today I'll upload it

At HostingCon this year Cody and I went to a session by Douglas Hanna from A Small Orange titled "Making a Remote Workforce Happen". I was interested to know how you can be sure your remote staff is working (Even though we have no remote staff). His answer was that you pretty much just know. Of course, you have to be paying attention but at the end of the day, check on productivity.. did they get anything done? How much?

Just a note on this in terms of PCI -- Blesta logs all credit card accesses by staff under "/admin/tools/logs/accountaccess/", as well as all contact changes, and much more. You can always see when a staff member accesses a credit card, and only those staff members who have the key can view them anyway.

The new website is built on Wordpress, it makes it easy for us to keep it updated and import all blog posts from the current website which runs Wordpress also. I basically just created a whole new WP theme, and re-built all the pages and content.

Is it purely in Blesta or minPHP... or something else?
 
Just curious..

I love this idea! This is exactly what our company needs. It would prevent a lot of PCI headaches.