Leaderboard

I'm pretty certain this functionality was intentional, though the work-around is certainly undesirable. Instead, I think, if fraud checks can be skipped for existing customers, it should only be possible if the customer has active services, or previously approved orders. A setting in the order plugin along the lines of: [x] Run fraud checks for all orders [ ] Run fraud checks for new customers only Might work... and if you opt to run checks for new customers only, then they would have to meet criteria mentioned above (existing approved orders, active services) Thoughts?

Thanks - that tutorial totally cleared it up

I think the option of requiring a previously accepted order would be the best approach, unless you make an interim "in review" client status they'd be kept in if their first order gets flagged, which the system would remove them from upon acceptance of an order.

Obviously, but that's no solution to keeping someone from bypassing it to start with. Lets say I'm asleep and can't mark them as fraud (or better yet, just letting Blesta "do it's thing") and they order, fail fraud. Order again, lets say 5 times, get setup, and setup spam bots. Now what? Blesta let someone circumvent the fraud system by taking advantage of a flaw in the logic. EDIT - your second assumption is the correct scenario.

re-uploading the whole blesta solved the issue

SSH keys have nothing to do with email or website authentication. That's only for *NIX nodes/VPS's/etc...

This is where it should be, in a non-publically-accessible location. But you can put it wherever you want on the filesystem and then update the Uploads Directory setting in Blesta under [settings] -> [system] -> [General] to set the correct absolute path of where you put the uploads directory.

Woops haha Yep that's the securer place otherwise anyone can download if they know the url

Version 3.5.0-b4 is now available. You can download it in the Client Area. This is a BETA feature release. This release is not considered stable enough for production use. Please report any bugs in the 3.5 beta bug forum. Installing Blesta See Installing Blesta in the User Manual for instructions. Upgrading Blesta See Upgrading Blesta in the User Manual for instructions. Release Notes See Blesta Core - Version 3.5.0-b4. For older releases see all Change Logs.