Jump to content
Slate Blackcurrant Watermelon Strawberry Orange Banana Apple Emerald Chocolate Marble
Slate Blackcurrant Watermelon Strawberry Orange Banana Apple Emerald Chocolate Marble


  • Content Count

  • Joined

  • Last visited

  • Days Won

  • Feedback


NickTheGreek last won the day on December 11 2019

NickTheGreek had the most liked content!

Community Reputation

157 Excellent


About NickTheGreek

  • Rank
    Design - Host

Personal Information

  • Website

Recent Profile Visitors

5,810 profile views
  1. IPS Community Suite 4.4.10 Released 02/04/2020 Key Changes This is a maintenance release to fix bugs. Additional Information Core Added support for PHP 7.4 Added support for [Emoji 12.0](https://emojipedia.org/emoji-12.0/) and [Emoji 12.1](https://emojipedia.org/emoji-12.1/) emojis Removed support for Gfycat embeds due to ongoing unaddressed security concerns on their end. Adjusted advertisement CSS classes to use a dynamic class name. Added a reset to the "upgrade in progress" flag when the upgrader is reached but there are no applications to upgrade. Added caching to the "Who's Online" widget. Improved progress indicator in "Complete My Profile". Improved ElasticSearch error logging. Added an empty alt attribute to reaction images in streams, which validators may flag as invalid HTML. Upgraded CKEditor to 4.13.1. Upgraded PHPUserAgent to 0.15.0, which resolves an issue with detection of the latest Opera browser releases. Updated Firefox & Edge logos on device management pages. Disabled database read/write separation for tasks. Disabled tasks being triggered by AJAX requests. Blew Lindy's mind. Fixed clubs showing up in some places when users did not have permission to access the clubs module. Fixed signature edit field showing for moderators when editing a user when signatures are disabled globally. Fixed an issue with member history logs when a user logs in from a new device but has not completed 2FA (when required). Fixed a javascript error triggered by browser notifications on Android devices. Fixed an issue where users that do not have permission to view Clubs, can still visit content item URL's directly. Fixed display issues with coub.com embeds. Fixed an issue detecting the visitor's country in some cases when using address form inputs. Fixed an issue with dates adjusting incorrectly when crossing over DST threshold in some areas. Fixed an issue using arrows in the editor after an emoji is inserted in some cases. Fixed an issue where some items could be missing from the leaderboard. Fixed an issue where disabled apps could still attempt to process custom URLs. Fixed an issue paginating in tables when certain special characters were included in the URL. Fixed an issue where cookies set by javascript designed to "stick" would expire in Jan 2020. Fixed AdminCP notification that a member is validating not disappearing if the member is flagged as a spammer rather than banned directly. Fixed SendGrid failing to work when using a dedicated IP pool. Fixed an issue where non-required profile completion steps may not be shown after required steps in some cases. Fixed an issue where re-entering the profile completion process after completing it once, but taking an action that requires completion again, may not place you on the correct profile completion step. Fixed javascript errors preventing most javascript from working in IE11. Fixed moderators encountering an error when removing a reaction from a profile status update or status reply made by another user. Fixed an issue where a required profile completion step to supply values for profile fields that do not display on the a user's profile may result in endless loop. Fixed an issue where a user will see an option to skip required profile completion steps, which will just reload the step. Fixed multi-moderation actions so that they redirect back to the page you are currently on. Fixed an issue that can occur when searching by member and changing between result pages. Fixed an issue that caused images to not show properly in poll options. Fixed an issue where sitemaps may show a distant past last modified date for content that doesn't have a valid last modified date. Fixed an issue where animated GIF images may not be properly identified as animated. Fixed an issue where profile photos would not be saved during profile completion if file uploads was the only available option. Fixed an issue rebuilding topic content for areas such as Downloads and Pages that cross post to the forums. Fixed an issue displaying certain locale-specific characters (such as the thousands separator, and the currency symbol) on Windows. Fixes a visual issue on dropdowns in webkit-based browsers. Fixed favicon icon not applying to the AdminCP correctly. Fixed potential broken images when the image filename contained parenthesis characters. Fixed the Safari Mask Icon not working in some server environments. Fixed an issue where using long URL's in an announcement can cause a MySQL error. Fixed an issue using custom WHERE clauses with an external database login handler. Fixed unapproved comments incorrectly being counted on forums where the item has been moved and a link to the item has been left in its place. Fixed an issue embedding Flickr albums in posts. Removed 'nofollow' tag from status updates when member has no other content. Commerce Added clarification that a billing address is required for automatic renewals when deleting the primary billing address. Added a currency selector to the subscriptions listing. Adjusted the payment method deletion process to prompt the administrator for confirmation if there are active PayPal Billing Agreements, and to cancel those Billing Agreements prior to deletion. Fixed error approving or voiding transactions which were held for approval which were from a PayPal Billing Agreement. Fixed an issue where the AdminCP notification indicating your PayPal payment gateway is not set up correctly may erroneously trigger. Fixed an issue where custom fields may incorrectly show up when checking out as a guest while quick registration is enabled. Fixed a possible error when applying changes to subscription plans to existing purchases. Fixed an issue where converting a product with a tax to a subscription failed. Fixed invoice title not showing for transactions in Authorize.Net's control panel. Fixed possible error taking Authorize.Net payments Fixed an issue where images from upsold products in the add to cart dialog may not be styled or sized correctly. Fixed transactions using the "Manual (check, bank wire, etc.)" payment method not showing in the list of transactions requiring attention. Fixed an issue where testing settings would just output the card types when using Braintree. Fixed an error during the upgrade when no default currency is set. Fixed an error that occurs when creating or editing a coupon code and unchecking the "No end date" option but not providing an end date. Fixed an issue where profile completion could be triggered during checkout in some circumstances. Fixed possibility of setting up Stripe without a valid webhook. Fixed subscriptions bypassing the payment confirmation screen. Fixed a styling issue with the Member Subscriptions widget. Fixed a styling issue with the "Best Sellers" and "Latest Products" widgets in some cases. Fixed referrals not working when the site is not accessible to guests. Fixed an issue where checking a Braintree webhook URL from the Braintree control panel would report a 500 server error incorrectly. Converters Improved the conversion process when disabling a conversion step that another step required to run first. Added conversion of article tags to vBCMS. Added conversion of extra article categories in vBCMS, extra categories will be converted as tags. Added conversion of meta tag keywords and descriptions when converting records from vBCMS. Reordered some background tasks that run after a conversion is complete to prevent an SQL error during processing. Improved vBulletin 4 conversion to retain user validating status where possible. Improved vBulletin conversions to convert more PMs where they may not have previously been converted (due to parent messages being deleted). Improved URL redirects for some vBulletin URLs including Social Groups, Social Group Discussions & Blog Entries. Fixed an issue where some vBulletin Blog comments may be skipped during conversion. Fixed an exception that can occur if Pages was selected as a conversion, but all options were disabled. Fixed product filters displaying in the store using the "internal" name instead of the "public" name. Fixed IP address information not converting with vBulletin Blog. Fixed certain user preferences not converting with vBulletin 4. Fixed some PHP notices that can occur in vBCMS converter with specific data. Fixed an issue where Gift Card email links may not work correctly when email statistics are enabled. Removed URL redirection for vBCMS records since required data is not available to support this. Forums Fixed an issue where the moderation history link wasn't shown for deleted topics. Fix Safari not scrolling to the reply box when clicking the "Reply to this topic" button at the top of a topic. Downloads Fixed REST API documentation showing the wrong endpoints for categories. Fixed sidebar not showing Club content correctly when the "Show Club Content Areas" setting is set to "Throughout the community" Gallery Fixed an issue submitting images with capitalized file extensions when movies have maximum allowed filesizes. Fixed multiple issues adding, editing and repositioning image notes. Fixed an incorrect gap between the tabs and reviews/comments while viewing an image. Pages Improved database permission configuration forms to better indicate if a group won't be able to access the database due to page-level permissions. Fixed bullet points using the wrong style (unfilled circle rather than filled circle) in database records. Fixed a (potential) issue moving database records files when adjusting the file storage configuration method for database records. REST / OAuth Fixed an uncaught exception in the member notifications REST API endpoint when an orphaned piece of content is present. Fixed certain `notificationData` entries returning `NULL` in the member notifications REST API endpoint. Fixed an issue where address lines in REST API calls may be returned as an object instead of an array. Third-Party / Developer / Designer Mode Fixed an issue using the node form helper when not using `$titleLangPrefix` in the node model, and using apostrophies in a node's title. Advertisements no longer use the .ipsAdvertisement_* class names, and instead use dynamic classnames unique to each community. Themes that restyle advertisements should update their CSS to use `.ips{expression="mb_ucfirst(\IPS\SUITE_UNIQUE_KEY)"}` instead. Adjusted the abstract class definition for `\IPS\Content\Search\Index::hashesWithPermission()` to match the docblock. Fixed an issue where Database table helpers could allow a blank advanced search value in specific situations. Fixed an error using reviews with content items but not containers when post before registering is enabled. Removed an extra parameter being passed to `_comments()` in some cases which could interfer with third party plugins. Removed some unused code in `\IPS\Output::error()`.
  2. This tutorial explains how to backup and restore MySQL or MariaDB databases from the command line using the mysqldump utility. The backup files created by the mysqldump utility are basically a set of SQL statements that can be used to recreate the original database. The mysqldump command can also generate files in CSV and XML format. You can also use the mysqldump utility to transfer your MySQL database to another MySQL server. If you don't backup your databases, a software bug or a hard-drive failure could be disastrous. To help save you lots of time and frustration, it is strongly recommended that you take the precaution of regularly backing up your MySQL databases. Mysqldump Command Syntax Before going into how to use the mysqldump command, let's start by reviewing the basic syntax. The mysqldump utility expressions take the following form: mysqldump [options] > file.sql Copy options - The mysqldump options file.sql - The dump (backup) file To use the mysqldump command the MySQL server must be accessible and running. Backup a Single MySQL Database The most common use case of the mysqldump tool is to backup a single database. For example, to create a backup of the database named database_name using the user root and save it to a file named database_name.sql you would run the following command: mysqldump -u root -p database_name > database_name.sql You will be prompted to enter the root password. After successful authentication, the dump process will start. Depending on the database size, the process can take some time. If you are logged in as the same user that you are using to perform the export and that user does not require a password, you can omit the -u and -p options: mysqldump database_name > database_name.sql Backup Multiple MySQL Databases To backup multiple MySQL databases with one command you need to use the --database option followed by the list of databases you want to backup. Each database name must be separated by space. mysqldump -u root -p --databases database_name_a database_name_b > databases_a_b.sql The command above will create a dump file containing both databases. Backup All MySQL Databases Use the --all-databases option to back up all the MySQL databases: mysqldump -u root -p --all-databases > all_databases.sql Same as with the previous example the command above will create a single dump file containing all the databases. Backup all MySQL databases to separate files The mysqldump utility doesn't provide an option to backup all databases to separate files but we easily achieve that with a simple bash FOR loop: for DB in $(mysql -e 'show databases' -s --skip-column-names); do mysqldump $DB > "$DB.sql"; done Copy The command above will create a separate dump file for each database using the database name as the filename. Create a Compressed MySQL Database Backup If the database size is very large it is a good idea to compress the output. To do that simply pipe the output to the gzip utility, and redirect it to a file as shown below: mysqldump database_name | gzip > database_name.sql.gz Create a Backup with Timestamp If you want to keep more than one backup in the same location, then you can add the current date to the backup filename: mysqldump database_name > database_name-$(date +%Y%m%d).sql The command above will create a file with the following format database_name-20180617.sql Restoring a MySQL dump You can restore a MySQL dump using the mysql tool. The command general syntax is as follows: mysqld database_name < file.sql In most cases you'll need to create a database to import into. If the database already exists, first you need to delete it. In the following example the first command will create a database named database_name and then it will import the dump database_name.sql into it: mysql -u root -p -e "create database database_name";mysql -u root -p database_name < database_name.sql Restore a Single MySQL Database from a Full MySQL Dump If you backed up all your databases using the -all-databases option and you want to restore a single database from a backup file which contains multiple databases use the --one-database option as shown below: mysql --one-database database_name < all_databases.sql Export and Import a MySQL Database in One Command Instead of creating a dump file from one database and then import the backup into another MySQL database you can use the following one-liner: mysqldump -u root -p database_name | mysql -h remote_host -u root -p remote_database_name The command above will pipe the output to a mysql client on the remote host and it will import it into a database named remote_database_name. Before running the command, make sure the database already exists on the remote server. Automate Backups with Cron Automating the process of backing up the databases is as simple as creating a cron job what will run the mysqldump command at specified time. To set up automated backups of a MySQL database using cronjob, follow the steps below: Create a file named .my.cnf in your user home directory: sudo nano ~/.my.cnf Copy and paste the following text into the .my.cnf file. [client] user = dbuser password = dbpasswd Copy Do not forget to replace dbuser and dbpasswdwith the database user and user's password. Restrict permissions of the credentials file so that only your user has access to it: chmod 600 ~/.my.cnf Create a directory to store the backups: mkdir ~/db_backups Open your user crontab file: crontab -e Add the following cron job that will create a backup of a database name mydb every day at 3am: 0 3 * * * /usr/bin/mysqldump -u dbuser mydb > /home/username/db_backups/mydb-$(date +%Y%m%d).sql Do not forget to replace username with your actual user name. You can also create another cronjob to delete any backups older than 30 days: find /path/to/backups -type f -name "*.sql" -mtime +30 -delete Copy Of course, you need to adjust the command according to your backup location and file names. To learn more about the find command check our How to Find Files in Linux Using the Command Line guide. Conclusion This tutorial covers only the basics, but it should be a good starting for anyone who wants to learn how to create and restore MySQL databases from the command line using the mysqldump utility. https://linuxize.com/post/how-to-back-up-and-restore-mysql-databases-with-mysqldump/
  3. IPS Community Suite Released 01/02/2020 Key Changes This is a maintenance release to fix bug reports since Additional Information Core Fixes an issue where cookies set by javascript are not stored permanently Commerce Fixes an issue when paying with PayPal
  4. IPS Community Suite Released 12/20/2019 This is a security release and we recommend all clients upgrade as soon as possible. Key Changes This is a maintenance release to fix security reports since 4.4.9. Additional Information Security Block binary/octal/hex/decimal based hostnames from being submitted in forms that could trigger an SSRF. Gfycat OEmbed endpoint could create XSS. Also informed Gfycat of issue. - Thanks to René Kroka - https://renekroka.cz for reporting this issue. Addition attachment permission checks when downloading attachments.
  5. IPS Community Suite 4.4.9 Released 12/02/2019 Key Changes Version 4.4.9 is a maintenance update to fix critical issues reported since 4.4.8. Additional Information Core Added ability to search for members based on custom profile fields with type "Checkbox Set". Improved the warning form to make it clearer when a preset action cannot be overridden. Updated PhpUserAgent to 0.14.0 for 'Edgium' support. Fixed an issue where duplicate quote/mention/embed notifications could be sent when editing content. Fixed an issue where you could submit the form to update your profile information with no date set for your birthday, resulting in your form submission being ignored. Fixed an unclear page title when searching for members. Fixed a potential issue sending digests when cron is used to run tasks. Fixed an issue with dates adjusting incorrectly when crossing over DST threshold in some areas. Fixed an issue where some administrators may not be able to manage applications in the AdminCP in some permission configurations. Fixed a MySQL 8.0.17 compatibility issue with the 4.0.0 Alpha 1 upgrade step. Fixed an issue where attachment filename text could be edited in the editor. Fixed an issue with status update pagination not appearing correctly in some cases. Fixed profile photo uploads allowing you to upload more than one file without automatically removing the previously uploaded file. Blogs Fixed an issue where draft entries submitted in private/closed clubs may not be visible by club owner or moderators. Fixed an issue where club blog entries may not be visible to global moderators/administrators when they have permission to view all club content. Forums Removed trendlines from charts in the AdminCP to reduce confusion. Commerce Fixed a situation where duplicate display names were allowed when checking out as a guest and the user was not prompted for their display name. Fixed Stripe webhooks potentially reporting an error. Fixed an issue with generating renewal invoices via the task system. Fixed an issue where custom fields may incorrectly show up when checking out as a guest while quick registration is enabled. Fixed a possible error when applying changes to subscription plans to existing purchases. Gallery Fixed a styling issue for widgets not set to show on all devices in some cases on pages. Fixed an issue where the sitemap could be stopped being rebuilt. Pages Changed categories in databases that do not allow direct record submissions to not output a "noindex" <meta> robots tag. Changed database category sitemap files to include empty categories if they contain subcategories.
  6. IPS Community Suite 4.4.8 Released 11/12/2019 Key Changes Version 4.4.7 is a maintenance update to fix critical issues reported since 4.4.7. Additional Information Core Upgraded CodeMirror to 5.49.0. Upgraded CKEditor to 4.13. Increased the amount of text that can be stored within an announcement. Fixed merging members creating duplicate follow records. Fixed an issue where accounts banned as a result of the spam service may be deleted automatically if email validation is enabled, allowing the user to register again. Fixed an issue embedding Twitch clips in some cases. Fixed a performance issue with Elasticsearch and posting in large topics. Fixed an issue where content items would stop showing in streams when deleting the last comment on that content item and using Elasticsearch. Fixed a CSRF error paginating through clubs after changing your view preference. Fixed floated images inside spoilers breaking out of the spoiler box. Fixed an issue with club breadcrumbs on mobile devices when the "Overview" tab is not the default tab for the club. Fixed an issue confirming guests have not reviewed an item when they have used the "post before registering" feature. Fixed an issue where the submit button on the account validation screen could be clicked multiple times, resulting in more than one confirmation email being sent. Fixed possible issue downloading the member list export on larger sites. Fixed a styling issue viewing the list of members who were not initially included in a member export. Fixed an issue where club nodes weren't shown in the node selector while creating custom streams in the ACP. Fixed a possible error in the menu manager where editing a deleted menu item would throw an exception. Fixed an issue where email addresses weren't saved for accounts created via non-default login methods when allowed domains were defined. Fixed a bug where certain email notifications triggered by guests may show incorrect verbiage in the email content. Fixed two issues where replying to Status Posts or hiding/unhiding them could fail when Elastic Search is being used. Fixed an issue saving custom chart views in the AdminCP when a lot of nodes were stored. Fixed an issue updating date ranges for custom chart views in the AdminCP in some cases. Fixed a styling issue for widgets not set to show on all devices in some cases. Fixed an issue where cancelling editing a post with a spoiler results in the spoiler no longer working. Fixed an issue where spotify links wouldn't embed. Fixed some missing friendly URLs. Fixed a niche error where a wrong message can be displayed if there is a network failure whilst browsing status updates. Fixed an issue where multiple New User Awaiting Validation notifications can be sent when using User then Admin Validation. Forums Fixed an issue where multipage topics that have been read can be marked as unread when visiting a page other than the last. Fixed a styling issue in QA forums when no rows are shown. Fixed an issue where an incorrect meta description tag may persist when navigating through the forums. Gallery Fixed an issue which made it impossible to move images into albums set to allow submissions from the public, specific members, specific groups, and club members. Fixed promote button not showing on non-lightbox Gallery image view fallback page. Commerce Fixed potential double charges if using Stripe. Fixed customer name showing as random characters in Stripe when a guest purchases something and opts to save their card on file. Fixed Hosting Error ACP Notifications causing an error when viewing the notifications page. Fixed an issue when a guest makes a donation. Fixed the missing overlay title while creating & editing an invoice note. Fixed possible timeout error when generating invoices manually in the AdminCP. Fixed an issue where purchases which wouldn't require a billing address couldn't be marked as paid. Fixed an issue where club joining fees may be shown without tax. Pages Fixed an issue previewing feed blocks in the AdminCP when restricting the feed by author. Fixed an issue where "Records" would be shown in database notification emails if categories were not being used for the database. Calendar Fixed manual iCalendar uploads requiring a venue to be specified if venues are enabled. Fixed an error importing ics files in the AdminCP if a venue is specified. Converters Added support for vBulletin 5.5.3+ conversions. Added support for XenForo 2.1.x conversions. Fixed issues with running conversions on MySQL 8.0.17 or newer. Fixed an issue converting from MyBB where PMs would not reflect the correct conversation starter. Fixed an issue where members may not be correctly assigned to groups that were added during the conversion. Fixed a bad log reference when converting from Gallery if the image is invalid. Fixed an issue where an error may be triggered when installing a new application and attempting to start a new conversion. Fixed an issue converting WordPress post thumbnails to Pages record image. Third-Party / Developer / Designer Mode Centralized the breadcrumb generation method for club nodes to reduce code duplication and ensure breadcrumb consistency. Changed `\IPS\Http\Url::ips()` to be declared as `final`, so hooks cannot override it. Fixed an issue using custom table helpers without quicksearch where the result and page counts may inadvertently get reset. Fixed an issue where cached unapproved/hidden review counts when merging content items were not adjusted properly. **You may wish to rebuild these counts in an upgrade routine within third party applications that support reviews and merging of content items.** Fixed an issue where the hidden status when creating a new review may not be set properly during creation when calling `\IPS\Content\Review::create()`. Minor code clarification where curly braces were omitted (while unnecessary, some found the code confusing to read).
  7. Πώς ένας Instagram λογαριασμός θα μπορούσε να παραβιαστεί σε λιγότερο από 10 λεπτά Πρόσφατα απονεμήθηκαν 30.000 δολλάρια σε ένα ερευνητή ασφάλειας ο οποίος ανακάλυψε μια σοβαρή ευπάθεια η οποία θα μπορούσε ενδεχομένως να έχει θέσει σε κίνδυνο παραβίασης οποιονδήποτε Instagram λογαριασμό. Καθώς το Facebook και το Instagram προσφέρουν υψηλές αμοιβές σε όσους ανακαλύπτουν ευπάθειες στους λογαριασμούς τους, ένας Ινδός ερευνητής ασφαλείας, ο Laxman Muthiyah, επέλεξε να εξετάσει την πλατφόρμα του Instagram. O Muthiyah διερεύνησε το κατά πόσον μπορεί να υπάρχει μια ευπάθεια στην διαδικασία με την οποία το Instagram χειρίζεται τα αιτήματα επαναφοράς του κωδικού πρόσβασης για τους χρήστες που έχουν τον έχουν ξεχάσει. Ο ερευνητής διαπίστωσε ότι όταν οι χρήστες ζητούν επαναφορά του κωδικού πρόσβασης μέσω του link του Instagram, ο ιστότοπος στέλνει ένα email στον χρήστη. Μετά από δοκιμές, ο Mutiyah δεν μπόρεσε να βρει κανένα κενό ασφαλείας στη διαδικασία και έτσι έστρεψε την προσοχή του στο πώς οι χρήστες των smartphones ανακτούν την πρόσβαση στους Instagram λογαριασμούς τους. Αυτό που βρήκε ήταν ότι το Instagram δίνει την δυνατότητα χρήστες που έχουν κλειδωθεί να ζητήσουν την αποστολή ενός εξαψήφιου μυστικού κωδικού ασφαλείας στο κινητό τους τηλέφωνο ή στο email τους. Εάν εισαχθεί αυτός ο κωδικός πρόσβασης, ο χρήστης θα μπορέσει να ανακτήσει την πρόσβαση στον Instagram λογαριασμό του. Θεωρητικά, εάν ένας χάκερ μπορούσε να αποκτήσει πρόσβαση στον εξαψήφιο κωδικό ασφαλείας, θα μπορούσε να σπάσει τον Instagram λογαριασμό (και να επαναφέρει τον κωδικό πρόσβασης κλειδώνοντας ταυτόχρονα τον νόμιμο κάτοχο). Αυτός ο κωδικός πρόσβασης θα μπορούσε ενδεχομένως να κλαπεί εάν ένας χάκερ κατάφερνε να αποκτήσει πρόσβαση στον email λογαριασμό του θύματος ή αν είχε πάρει τον έλεγχο του κινητού τηλεφώνου του θύματός του μέσω της μεθόδου SIM swap scam. Ωστόσο, ο Mutiyah αναρωτήθηκε αν θα μπορούσε να υπάρξει και άλλος τρόπος να σπάσει κάποιος έναν λογαριασμό στην περίπτωση που καμία από τις επιλογές αυτές δεν είναι διαθέσιμη. Ο Mutiyah συνειδητοποίησε ότι το μόνο που αρκεί να κάνει ο χάκερ είναι να δώσειι τον σωστό εξαψήφιο κωδικό - που είναι ένας οποιοσδήποτε συνδυασμός μεταξύ 000000 και 999999 – πριν εκπνεύσουν τα δέκα λεπτά που ο συγκεκριμένος κωδικός είναι αποδεκτός από το σύστημα. Για τον αριθμό των ψηφίων αυτών απαιτούνται περίπου ένα εκατομμύριο αριθμοί που πρέπει να εισαχθούν μέσα σε δέκα λεπτά, για να είναι εφικτή η αλλαγή του κωδικού ενός Instagram λογαριασμού. Μέσω των likes του Instagram μπορεί να τρέξει ένας κώδικας με τον οποίο να δίνονται ταχύτατα διάφοροι συνδυασμοί του κωδικού μέχρι να βρεθεί ο σωστός. Ως τρόπο άμυνας, η πλατφόρμα έχει την δυνατότητα να ανιχνεύσει την κίνηση αυτή και επιβραδύνει διαρκώς τις επόμενες προσπάθειες μέχρις ότου λήξει το χρονικό διάστημα των δέκα λεπτών. Στις δοκιμές του ο Mutiyah είδε ότι, από τις 1000 προσπάθειες που έστειλε για να μαντέψει τον κωδικό ασφαλείας ενός Instagram λογαριασμού, είχε άμεση απάντηση στις 250 ενώ στις επόμενες 750 η απάντηση καθυστερούσε. Ωστόσο, μετά από μερικές επιπλέον ημέρες δοκιμής, ο ερευνητής κατάφερε να ανακαλύψει ότι ο μηχανισμός καθυστέρησης της απάντησης του Instagram θα μπορούσε να παρακαμφθεί εάν άλλαζε η IP διεύθυνση του υπολογιστή που έστελνε το αίτημα (με άλλα λόγια, να μην χρησιμοποιεί τον ίδιο υπολογιστή για να προτείνει τον κώδικα ανάκτησης) «Η αποστολή ταυτόχρονων αιτημάτων χρησιμοποιώντας διαφορετικές IP διευθύνσεις μου επέτρεψε να στείλω ένα μεγάλο αριθμό αιτήσεων χωρίς χρονικό περιορισμό στην απάντηση. Ο αριθμός των αιτημάτων που μπορούμε να στείλουμε εξαρτάται από τον αριθμό των ταυτόχρονων αιτήσεων και τον αριθμό των IP διευθύνσεων που χρησιμοποιούμε. Δεδομένου ότι ο κωδικός λήγει σε 10 λεπτά, αυτό κάνει την επίθεση ακόμη πιο δύσκολη. Τελικά χρειαστήκαμε γύρω στις 1.000 IPs για να ολοκληρώσουμε την επίθεση.» Ο Mutiyah λέει ότι χρησιμοποίησε 1.000 διαφορετικές μηχανές και IPs για να πετύχει την επίθεση και στις δοκιμές του έστειλε περίπου 200.000 αιτήματα. Δημιούργησε μάλιστα και ένα YouTube βίντεο για να αποδείξει την επίθεση του. Φυσικά, ο αριθμός των 200.000 αιτημάτων απέχει πολύ από το 1 εκατομμύριο που είναι ο αριθμός των συνδυασμών που απαιτείται για να καλυφθούν όλα τα ψηφία του κωδικού. Η έρευνα του Mutiyah καταλήγει στο συμπέρασμα ότι σε μια πραγματική επίθεση θα χρειαστούν περίπου 5.000 IP διευθύνσεις για την επιτυχία της επίθεσης. Αν και αυτό ακούγεται σαν ένας μεγάλος αριθμός, αυτό μπορεί πράγματι να επιτευχθεί εύκολα με χαμηλό σχετικά κόστος (ο Mutiyah λέει το κόστος μπορεί να είναι και γύρω στα 150 δολλάρια αν χρησιμοποιηθεί εάν χρησιμοποιηθεί ένας cloud provider όπως η Google ή η Amazon). Είναι εύκολο να φανταστεί κανείς ότι μια τέτοια τεχνική θα κινήσει το ενδιαφέρον σε πολλούς χάκερ που θα ήθελαν να αποκτήσουν πρόσβαση σε Instagram λογαριασμούς και θα ήταν διατεθειμένοι να πληρώσουν περισσότερα από τα 30.000 δολλάρια που έλαβε ο Muthiyah ως ανταμοιβή. Σας υπενθυμίζουμε ότι είναι απαραίτητο να ασφαλίζετε τους λογαριασμούς σας με ισχυρούς και κωδικούς πρόσβασης και για να ενεργοποιείτε όπου είναι δυνατό ττην μέθοδο της two-factor authentication.
  8. IPS Community Suite 4.4.6 Released 08/19/2019 This is a security release and we recommend all clients upgrade as soon as possible. Key Changes Version 4.4.6 is a maintenance update to fix issues reported since 4.4.5. Additional Information Security Fixed an issue where a malicious user may be able to identify the full path to a file uploaded to a custom field. Core Added support for MySQL 8. Improved security headers on error pages. Changed the "Who follows this" page to instruct bots not to index the page for SEO purposes. Moved the Club Members Box to the sidebar when the club information are shown in the sidebar. Fixed an error visiting the full notifications screen when the user has no notifications. Fixed an issue where old messenger links may not redirect correctly. Fixed an issue where new comment notifications can show an incorrect read status. Fixed club sorting preference being lost when navigating to another page of clubs. Fixed an issue where the "Bypass word and link filters" setting was not honored for links. Fixed attachments not being properly claimed when added to a Staff Directory member entry. Fixed an issue where reordering social profiles may not show the reordered list after saving without reloading the page. Fixed a potential error when an invalid sort parameter is passed in to certain pages. Fixed an issue where certain tables of data may show an incorrect number of pages when filtering the table. Fixed the Leaderboard popular content inconsistency when using ElasticSearch. Fixed an issue where Pages blocks wouldn't show in the configuration form when using the block manager. Fixed an issue where creating a club feature could result in a DB exception. Fixed broken ACP tables on Internet Explorer 11. Fixed an issue where Status Posts couldn't be deleted. Fixed an issue where 0B may be displayed in place of the real Redis maximum memory amount on the support overview page. Fixed an issue where using REDIS as session storage would return the wrong members for the online list. Fixed an issue with lazy-loading where images with a custom aspect ratio set did not honor the ratio after loading. REST & OAuth Fixed OAuth Logins being broken because of a missing DB column. Blogs Fixed blog entries from clubs showing on the Blog applications Grid View when the "Show Club Content Areas" setting is set to "Only Within Clubs". Fixed an error that can occur with some configurations when attempting to add or move a blog entry. Pages Fixed an issue where the wrong user may be notified of Pages database records being embedded in other content areas. Fixed an issue where attachments in newly submitted database records would not be used when embedding records in other areas of the software. Fixed an issue with Schema.org structured data tags in Pages when the site has a logo image applied to the theme. Fixed an error searching databases in the AdminCP using the quicksearch input on the database listing page. Fixed an issue in the Pageurl Output Extension which was catching a not existing exception. Gallery Fixed media sound continuing to play after closing the lightbox. Fixed an error that can occur when attempting to view disk space statistics when there are none. Calendar Fixed an issue where all day ranged events reflect the wrong event end date in iCalendar exports. Adjusted ical import process to ignore WKST values of 'MO' (which is the default) to reduce false-positive error reports. Converters Fixed some issues converting MyBB content including profile fields, avatars & attachments. Commerce Added ability for administrator to choose what to do after a dispute is won (previously would automatically re-approve the transaction). Fixed an issue where the tax name in invoice emails could be missing. Fixed potential uncaught exception if trying to view a product in the AdminCP that doesn't exist. Fixed an issue where the description of new payment gateways wasn't saved successfully. Third-Party / Developer / Designer Mode Fixed an issue using the node form helper when not using $titleLangPrefix in the node model, and using apostrophies in a node's title. Fixed an issue where the wrong member's AdminCP notification dismissals were referenced in \IPS\core\AdminNotification::notificationIdsForMember(). Fixed an issue where Nodes that do not implement permissions may still try to check them, resulting in an error in some situations. Changes affecting third-party developers and designers Added an ID to the mobile navigation sign in link elSigninButton_mobile. All columns named member must now be escaped with backticks when querying the database in order to support MySQL 8.
  9. 83 useful Linux commands Enterprise administrators and managers who use this guide of essential Linux commands, utilities and tools will find ways to manage files, get process status updates and more. Linux administrators cannot live by the GUI alone. That's why we've compiled useful Linux commands into this convenient guide. By learning how to use a few simple tools, command-line cowards can become scripting commandos and get the most out of Linux by executing kernel and shell commands. alias The alias command is a way to run a command or a series of Unix commands using a shorter name than those that are usually associated with such commands. apt-get The apt-get tool automatically updates a Debian machine and installs Debian packages/programs. AWK, Gawk AWK is a programming language tool used to manipulate text. The AWK utility resembles the shell programming language in many areas, but AWK's syntax is very much its own. Gawk is the GNU Project's version of the AWK programming language. bzip2 A portable, fast, open source program that compresses and decompresses files at a high rate, but that does not archive them. cat A Unix/Linux command that can read, modify or concatenate text files. The cat command also displays file contents. cd The cd command changes the current directory in Linux and can conveniently toggle between directories. The Linux cd command is similar to the CD and CHDIR commands in MS-DOS. chmod The chmod command changes the permissions of one or more files. Only the file owner or a privileged user can change the access mode. chown The chown prompt changes file or group ownership. It gives admins the option to change ownership of all the objects within a directory tree, as well as the ability to view information on the objects processed. cmp The cmp utility compares two files of any type and writes the results to the standard output. By default, cmp is silent if the files are the same. If they differ, cmp reports the byte and line number where the first difference occurred. comm Admins use comm to compare lines common to file1 and file2. The output is in three columns, from left to right: lines unique to file1, lines unique to file2 and lines common in both files. cp The cp command copies files and directories. Copies can be made simultaneously to another directory even if the copy is under a different name. cpio The cpio command copies files into or out of a cpio or tar archive. A tar archive is a file that contains other files, plus information about them, such as their file name, owner, timestamps and access permissions. The archive can be another file on the disk, a magnetic tape or a pipe. This Linux command also has three operating modes: copy-out, copy-in and copy-pass. It is also­ a more efficient alternative to tar. CRON CRON is a Linux system process that executes a program at a preset time. To use a CRON script, admins must prepare a text file that describes the program and when they want CRON to execute it. Then, the crontab program loads the text file and executes the program at the specified time. cURL Admins use cURL to transfer a URL. It is useful for determining if an application can reach another service and how healthy the service is. declare The declare command states variables, gives them attributes or modifies the properties of variables. df This command displays the amount of disk space available on the file system containing each file name argument. With no file name, the df command shows the available space on all the currently mounted file systems. echo Use echo to repeat a string variable to standard output. enable The enable command stops or starts printers and classes. env The env command runs a program in a modified environment or displays the current environment and its variables. eval The eval command analyzes several arguments, concatenates them into a single command and reports on that argument's status. exec This function replaces the parent process with any subsequently typed command. The exec command treats its arguments as the specification of one or more subprocesses to execute. exit The exit command terminates a script and returns a value to the parent script. expect The expect command talks to other interactive programs via a script and waits for a response, often from any string that matches a given pattern. export The export command converts a file into a different format than its current format. Once a file is exported, it can be accessed by any application that uses the new format. find The find command searches the directory tree to locate particular groups of files that meet specified conditions, including -name, -type, -exec, -size, -mtime and -user. for, while The for and while commands execute or loop items repeatedly as long as certain conditions are met. free With the free command, admins can see the total amount of free and used physical memory and swap space in the system, as well as the buffers and cache used by the kernel. gawk See AWK entry. grep The grep command searches files for a given character string or pattern and can replace the string with another. This is one method of searching for files within Linux. gzip This is the GNU Project's open source program for file compression that compresses webpages on the server end for decompression in the browser. This is popular for streaming media compression and can simultaneously concatenate and compress several streams. history The history function shows all the commands used since the start of the current session. ifconfig The ifconfig command configures kernel-resident network interfaces at boot time. It is usually only needed when debugging or during system tuning. ifup With ifup, admins can configure a network interface and enable a network connection. ifdown The ifdown command shuts down a network interface and disables a network connection. iptables The iptables command allows or blocks traffic on a Linux host and can prevent certain applications from receiving or transmitting a request. kill With kill signals, admins can send a specific signal to a process. It is most often used to safely shut down processes or applications. less The less command lets an admin scroll through configuration and error log files, displaying text files one screen at a time with backward or forward navigation available. locate The locate command reads one or more databases and writes file names to match certain output patterns. lft The lft command determines connection routes and provides information to debug connections or find a box/system location. It also displays route packets and file types. ln The ln command creates a new name for a file using hard linking, which allows multiple users to share one file. ls The ls command lists files and directories within the current working directory, which allows admins to see when configuration files were last edited. lsof Admins use lsof to list all the open files. They can add -u to find the number of open files by username. lsmod The lsmod command displays a module's status within the kernel, which helps troubleshoot server function issues. man The man command allows admins to format and display the user manual that's built into Linux distributions, which documents commands and other system aspects. more Similar to less, more pages through text one screen at a time but has limitations on file navigation. mount This command mounts file systems on servers. It also lists the current file systems and their mount locations, which is useful to locate a defunct drive or install a new one. mkdir Linux mkdir generates a new directory with a name path. neat This is a Gnome GUI tool that allows admins to specify the information needed to set up a network card. netconfig/netcfg Admins can use netconfig to configure a network, enable network products and display a series of screens that ask for configuration information. netstat This command provides information and statistics about protocols in use and current TCP/IP network connections. It is a helpful forensic tool for figuring out which processes and programs are active on a computer and are involved in network communications. nslookup A user can enter a host name and find the corresponding IP address with nslookup. It can also help find the host name. od The od command dumps binary files in octal -- or hex/binary -- format to standard output. passwd Admins use passwd to update a user's current password. ping The ping command verifies that a particular IP address exists and can accept requests. It can test connectivity and determine response time, as well as ensure an operating user's host computer is working. ps Admins use ps to report the statuses of current processes in a system. pwd The print working directory (pwd) command displays the name of the current working directory. rcp Short for remote copy program, this prompt lets users copy files to or from a remote computer or between remote systems. read The read command interprets lines of text from standard input and assigns values of each field in the input line to shell variables for further processing. rsync This command syncs data from one disk or file to another across a network connection. It is similar to rcp but has more options. screen The GNU screen utility is a terminal multiplexor, where a user can use a single terminal window to run multiple terminal applications or windows. sdiff Admins use sdiff to compare two files and produce a side-by-side listing indicating lines that are dissimilar. The command then merges the files and outputs the results to the outfile. sed The sed utility is a stream editor that filters text in a pipeline, distinguishing it from other editors. It takes text input, performs operations on it and outputs the modified text. This command is typically used to extract part of a file using pattern matching or to substitute multiple occurrences of a string within a file. service This command is the quickest way to start or stop a service, such as networking. shutdown The shutdown command turns off the computer and can be combined with variables such as -h for halt after shutdown or -r for reboot after shutdown. slocate Like locate, slocate -- or secure locate -- provides a way to index and quickly search for files, but it can also securely store file permissions and ownership to hide information from unauthorized users. Snort Snort is an open source network intrusion detection system and packet sniffer that monitors network traffic. It looks at each packet to detect dangerous payloads or suspicious anomalies. Snort is based on libpcap. sort This command sorts lines of text alphabetically or numerically according to the fields. Users can input multiple sort keys. sudo The sudo command lets a system admin give certain users the ability to run some -- or all -- commands at the root level and logs all the commands and arguments. SSH Secure Socket Shell (SSH) is a command interface for secure remote computer access and is used by network admins to remotely control servers. tar The tar command lets users create archives from a number of specified files or to extract files from a specific archive. tail The tail command displays the last few lines of the file. This is particularly helpful for troubleshooting code because admins don't often need all the possible logs to determine code errors. TOP Technical Office Protocol (TOP) is a set of protocols for networks that performs distributed information processing and displays the tasks on the system that take up the most memory. TOP can sort tasks by CPU usage, memory usage and runtime. touch Admins can create a blank file within Linux with the touch command. tr This command translates or deletes characters from a text stream. It writes to a standard output, but it does not accept file names as arguments -- it only accepts input from standard input. traceroute The traceroute function determines and records a route through the internet between two computers and is useful for troubleshooting network/router issues. If the domain does not work or is not available, admins can use traceroute to track the IP. uname This function displays the current OS name and can print system information. uniq With uniq, admins can compare adjacent lines in a file and remove or identify any duplicate lines. vi The vi environment is a text editor that allows a user to control the system with just the keyboard instead of both mouse selections and keystrokes. vmstat The vmstat command snapshots everything in a system and reports information on such items as processes, memory, paging and CPU activity. This is a good method for admins to use to determine where issues/slowdowns may occur in a system. wget This is a network utility that retrieves web files that support HTTP, HTTPS and FTP protocols. The wget command works noninteractively in the background when a user is logged off. It can create local versions of remote websites and recreate original site directories. while See for entry. whoami The whoami command prints or writes the user login associated with the current user ID to the standard output. xargs Admins use xargs to read, build and execute arguments from standard input. Each input is separated by blanks. https://searchdatacenter.techtarget.com/tutorial/77-Linux-commands-and-utilities-youll-actually-use
  10. IPS Community Suite 4.4.5 Released 07/29/2019 Key Changes Version 4.4.5 is a maintenance update to fix issues reported since 4.4.4. Additional Information Core Added an Admin CP dashboard widget to show total members. Added back the ability to search personal messages by recipient and sender name, and removed the 365 day limit on results. Added an option for feeds of content that support future publishing (such as Pages records and Blog entries) to control whether published, unpublished or any results are shown. Added new options for content widget feeds to return hidden content (in addition to the existing pending approval option), as well as both hidden content and content pending approval. Added support for more explicit browser autofill on form fields. Added moderator log support for opening/closing polls. Upgraded CKEditor to 4.12.1. Improved the page speed for guests by not loading the editor or notification sound javascript libraries until they are needed. Improved the error message when attempting to access the REST API in the Admin CP in the event the local server is inadvertently IP banned. Improved performance when sending Digests. Improved license key checking when the license server may not be available. Improved reporting of Redis memory usage in support area. Improved the error message when attempting to access the REST API in the Admin CP in the event the local server is inadvertently IP banned. Improved performance when using the database for common data storage. Improved the accuracy of the progress bar on the 'Deleting moved original files' background process. Improved efficiency when generating sitemap files if certain content is configured not to be included. Improved the user interface configuring Sitemaps to clarify content that will be include and excluded from the Sitemap. Improved admincp upgrading when using SFTP. Implemented logging to the moderator log, when a moderator removes all followers from a followable item. Changed notification read/unread status to behave as it did prior to 4.4.4. Clarified the "Domains to instruct search engines to follow" setting description and improved the setting to strip http:// and https:// protocols from supplied values. Fixed account failed logins not correctly locking future login attempts in some cases. Fixed an issue where node deletions (such as forums and categories) were not always properly logged to the administrator logs. Fixed an issue where blacklisted URLs used for embeds may not trigger post moderation when configured to do so. Fixed an issue where the club tab on the members profile can result in a DB error when a page <1 was used. Fixed an issue where the Automatically Prune Followers setting ignored reviews. Fixed an issue where it may not be possible to permanently delete deleted content manually. Fixed status updates not importing properly when an account is linked to multiple social logins. Fixed some server error messages not showing. Fixed certain notification and digest emails not sending properly via cron. Fixed custom field custom formatting options being applied to fields in the AdminCP unexpectedly. Fixed Custom Sorting on the Deleted Content page not working. Improved upgrade process for Community in the Cloud. Improved the error message when attempting to access the REST API in the Admin CP in the event the local server is inadvertently IP banned. Fixed potential browser errors and warnings caused by notification sounds. Fixed pagination not loading correctly when searching within messenger. Fixed an issue where comment counts are decremented incorrectly when a Post Before Registering comment is cancelled. Fixed an issue where the mobile keyboard would not be hidden after submitting the search form. Fixed issues that can occur (such as the editor not loading) when browser local storage is unavailable. Fixed an issue where auto-scheduled promotions may not correctly queue for upcoming slots. Fixed maps generated by Mapbox potentially displaying larger than intended when lazy loading is enabled. Fixed an issue where profile completion could cause a fatal error when using custom forum themes. Fixed an issue where single status update links had the wrong canonical URL. Fixed a possible error when mentioning someone or using a custom emoticon in a post. Fixed an issue where installing plugins with a title containing more then 32 characters would fail. Fixed an issue where Elastic Search may not update records correctly. Fixed an issue where user profiles may be slow to load. Fixed an issue where a template error could be generated by attempting to search members when the user does not have permission to view members. Fixed some styling (spacing) issues with the right-hand column shown on the Clubs homepage. Fixed an issue pasting certain code into editor code boxes. Fixed some old URL patterns (from IP.Board 3.x) no longer redirecting to the new URL format as of 4.4.x. Fixed an issue where the publish_to_groups permission was still required to promote to Facebook pages. Fixed an issue where canceling an invoice with already canceled billing agreements would try to cancel the billing agreement again. Fixed a niche issue that can occur when using lazyload, image proxy and external file storage. Fixed an issue where one could fake member null votes on polls. Fixed an issue where profile photo permissions may not apply correctly when a user belongs to more than one group. Fixed a styling issue with profile completion on mobile. Fixed a broken link in the report center. Fixed an issue where invalid user groups can cause an error to show to users. Fixed an issue where the poll form wouldn't add an empty first question. Fixed an issue where sort buttons can overlap pagination. Fixed an issue where personal conversations may show a 'promote' button to members with permission to promote content. Fixed incorrect REST API documentation when editing items. Fixed an issue where the 'support' link in the AdminCP would be viewable if the restricted administrator did not have access. Fixed an issue where the spoiler header within a post can get doubled up when selecting text within the post in certain cases. Fixed an issue where merging members incorrectly merged reputation. Fixed an issue where the image aspect ratio setting was not set correctly when editing images. Fixed an issue where search options may show for items that are not searchable. Fixed AdminCP member quick-searches not searching within member names when the site can handle inline searches. Adjusted instances of "recognise" in language strings to "recognize". Fixed an error when full registration is enabled with no available profile fields. Fixed an issue where the node controller wasn't showing the child nodes as possible target category while moving the content. Fixed an issue where it was possible to be stuck in a position where a poll could not be re-opened. Calendar Removed the ability to create ranged recurring events that overlap (e.g. where the next occurence start time is before the first occurrence has finished). Removed the timezone from event notification emails for all day events. Fixed an issue where events that repeat for a set period will end one period before they should. Fixed an issue where users are able to create events where the end time occurs before the start time. Fixed an issue where ranged recurring events may show an incorrect date range for the event on the calendar "Day" view. Fixed an issue where embedding a Calendar Event may fail in some circumstances. Fixed an issue where ranged recurring events may not show as occurring on an end date when they span across months. Fixed an issue where the calendar name would be exposed to members which don't have permissions to view the calendar via the members online location on the profile. Pages Added the ability to specify whether the record canonical tag points to the current page, or the root page (page 1). Added the ability to show just your own records via the Database Filters widget. Added the ability to filter by Member field types via the Database Filters widget. Added record tags to the database record listing template for newly created Listing template sets. Improved the display of databases in the ACP menu. Fixed an issue where excluding Pages pages from the sitemap may cause the sitemap task to get stuck and stop building new sitemap files. Fixed an issue where a template group could be renamed to an existing template group, causing a conflict which results in an error. Fixed an error attempting to submit records to a database where a Member type field that must be unique is configured. Fixed an issue where the category title is missing from the page's HTML title tag. Fixed an issue where deleting a database record with a linked topic may cause an error. Commerce Added support for Strong Customer Authentication (SCA) in Stripe. Fixed referral commission not being given for renewals. Fixed an error that can occur when renewal invoices are generated if no billing address existed on the original invoice. Fixed invoice notification emails showing a payment failed warning if one payment method failed even if another one succeeded. Fixed social login buttons not working when checking out as a guest. Fixed staff replies to support emails. Fixed an issue where stock replies may have new lines stripped. Fixed pending withdrawl AdminCP notification link to point to the pending withdrawl filter. Fixed an issue where you may not be able to delete subcategories in the store. Fixed a potential error when upgrading from a version older than 4.4.2. Fixed an issue where switching to a "default" support stream (ex. Open, Assigned, or Tracked Requests) can result in a MySQL error. Fixed an issue where deleting a customer note would not close the dialog. Fixed member group being moved when upgrading or modifying an expired purchase. Fixed an issue where purchase custom field labels may show as a random string or in the wrong language in the Transaction Approved email. Edited the purchase email notification setting to clarify an email is sent for every item. Converters Clarified the error message shown when invalid database details are supplied. Fixed an issue where a conflict may prevent some data being converted if (for example) converting attachments for blog and forums in the same conversion. Fixed an issue relating to converting mentions from other platforms. Fixed an issue where converting from vBulletin 5 can cause duplicate topics. Fixed an issue where items selected to skip were converted anyway. Fixed an issue where it wasn't possible to convert only core. Fixed a performance regression re-introduced in 4.4. Fixed an issue preventing UBBThreads conversions working. Stopped converting the "manually set time zone" preference for vBulletin conversions, as the timezone preference itself is not converted and the ability to adjust this preference is not available in our current interface. Forums Improved the performance of the Unarchive task. Fixed an issue upgrading from older versions of Invision Community where topics or posts queued for deletion were present. Fixed an issue where posts from ignored members were visible if the author was in a highlighted group. Fixed an issue where archive settings could be saved with no more than or less than selection. Fixed an issue where hiding a topic without an existing first post would stop the queue to hide all the members content. Gallery Fixed Follow and Promote buttons not showing for images on mobile devices. Fixed an issue where inline renaming an image from the lightbox would either fail or rename the album. Fixed instances where a member with a secondary group that doesn't allow albums to be created, but with a primary group that does but limits how many that can be created, will allow the member to create unlimited albums. Downloads Implemented logging to the moderator log, when a moderator toggles the purchasable status of a file. Removed the button to copy the Log Downloads category setting which does not apply. Blog Improved the blog header display for blogs within clubs. Fixed an issue where the club leader could not set a cover photo for a club blug. Fixed an issue where draft entries may be included in digests. REST & OAuth Added a “Use a different account” button on OAuth login screen Third-Party / Developer / Designer Mode Cleaned up some legacy code checking for specific PHP versions. Fixed some typos in the REST API documentation. Fixed malformed HTML in the admin `tabs` HTML template which caused problems when hooks were created for this template. The Application and Plugin directory are limited to 80 characters. Set the alreadyReported flag in \IPS\Content after reporting content to ensure correct value is returned on future calls to report methods. Fixed some minor issues with the lightbox comments support (currently unused by core Invision Community code). Fixed an issue where email template parameters may not be captured properly to generate the email subject, resulting in an error. Fixed a potential error that may be encountered while working with Calendar dates from command line (i.e. tasks being executed via cron). Fixed an error that can occur with email statistics when different applications use the same email subject language string. Fixed a few functions that needed to be called from the root namespace. Changes affecting third-party developers and designers Added `\IPS\Node\Model::deleteLogPermissions()` method to allow applications to specify permissions for managing deletion logs. js.php javascript loader no longer creates an external dispatcher instance. `\IPS\Content::logDelete()` and `\IPS\core\DeletionLog::setContentAndMember()` now accept FALSE for the member parameter, which will store the deletion log as if no specific member deleted the content. Added a new `digestWhere()` method to content items, this allows you to specify an additional where clause when processing digests. * Items in red require extensive testing.
  11. Install ImageMagick on cPanel with EasyApache 4 This post will help you to install ImageMagick on cPanel with EasyApache 4. ImageMagick is mainly used to create, edit and convert bitmap images. It supports a variety of image formats. Please click here to get the supported image formats. The ImageMagick can be installed using a simple cPanel script (/scripts/installimagemagick) in the older version of cPanel, but in newer versions of cPanel with EasyApache 4 uses another method to install it. Please check it below: yum install ImageMagick-devel ImageMagick-c++-devel ImageMagick-perl Once the installation is over, run the following command to verify if it is working /usr/bin/convert --version Install ImageMagick PHP extension on cPanel with EasyApache 4 /opt/cpanel/ea-php56/root/usr/bin/pecl install imagick Add ImageMagick extension into the PHP 5.6 configuration file to load the module. vim /opt/cpanel/ea-php56/root/etc/php.ini Add the following into it: extension=imagick.so Restart the web server service httpd restart Then verify the installation /opt/cpanel/ea-php56/root/usr/bin/php -m | grep imagick Note: If you would like to enable ImageMagick PHP module on PHP 7.0, you just need to update the correct binary paths on the above installation. ie., /opt/cpanel/ea-php56/root/usr/bin/pecl to /opt/cpanel/ea-php70/root/usr/bin/pecl /opt/cpanel/ea-php56/root/etc/php.ini to /opt/cpanel/ea-php70/root/etc/php.ini /opt/cpanel/ea-php56/root/usr/bin/php to /opt/cpanel/ea-php70/root/usr/bin/php If you would like to enable the ImageMagick PHP module on the other PHP versions available on EasyApache 4, please do the same by changing the correct binary path. That’s it! https://grepitout.com/install-imagemagick-cpanel-easyapache4/
  12. https://www.lowendtalk.com/discussion/158547/new-cpanel-licensing-and-pricing-structure-thoughts
  13. cPanel has shaken the web hosting community with its recent price rise announcement. They have changed its pricing model from a per server pricing to a per account model. So if you’re a cPanel partner and were paying $11 per cPanel license for each server and running 1,000 websites, you’ll now have to pay $122. That’s approximately 1000% price rise! According to cPanel’s new pricing, here’s the breakup for 1000 websites : $32 for 100 accounts $0.1 each for 900 accounts The “Not So Acceptable” New Pricing The pricing is different depending upon the number of accounts. The price for the end user is comparatively higher than the cPanel partners. General Pricing For 5 accounts – $20/month For 30 accounts – $30/month For 100 accounts – $45/month + $0.20 for each additional account You can find more information about the latest pricing here. cPanel Partner Pricing For 5 accounts – $12.50/month For 30 accounts – $17.50/month For 100 accounts – $32/month + $0.10 for each additional account cPanel Pricing: New vs Old People are criticizing cPanel for rolling out the new pricing model. Let’s see the old and new pricing of cPanel: cPanel Pricing Earlier Before it was simply VPS and dedicated pricing. Latest cPanel Pricing The new pricing will not make a huge difference to people under 5 Accounts. However, as the accounts increase, cPanel will cost more than the server itself. Major Impact on Web Hosting Community Over the years, people have relied on cPanel for managing their sites. cPanel’s popularity is because of its integration with Softaculous, LiteSpeed, PHP Selector, JetBackup, CageFS, CloudLinux, Imunify360, and much more. This has helped cPanel become faster, reliable, secure, and feature-rich. This price increase seems to be a nonstrategic roll out and cPanel has faced major backlash from the web-hosting community! Users on Twitter reacted with a lot of aggression and mostly negatively with most of them threatening to switch to alternative control panels. 1. End-Users While servers with a single account can go for cPanel solo, and servers with under 5 accounts still get the same price, the overall price for end-user is comparatively higher for servers having more than 5 accounts. 2. Shared Hosting Providers or Resellers The worst affected of the whole lot. Mostly, a shared hosting company will run around 1000 websites on a single VM with the $11/mo cPanel VM license. After the new changes come into effect, their cPanel license costs will rise to $122/mo! That’s a whopping 1000% increase and almost equivalent to their infrastructure or server costs 😉 3. Unmanaged Server Providers Generally, unmanaged server providers don’t have the access to the server and therefore, didn’t know how many accounts are on running on a server which was fine because the license was per server. The new pricing model has added an extra layer of efforts for the providers. Now, they need to have a log of how many accounts are being created on a single server, or else they may end up footing the bill of thousands of dollars! Who is Going to Get The Hardest Hit? Shared/Reseller Hosting Providers License holders in price-sensitive countries like Latin America, India, and other South East Asian countries. Should You Remain With cPanel? Pros cPanel has innovated over years with a user-friendly UI and a number of integrations Less time to spend on customer support No need to migrate data and involve in the risk of data loss You will avoid downtime caused while migrating data. Cons With no annual billing, you will face the hassle of monthly invoices, lack of funds, etc. Substantially increased costs may either make business unviable for a few or the end clients will end up paying extra for these additional costs. Coping Up with the cPanel Price Rise If you’re choosing to stay with cPanel, the only solution is to re-evaluate your pricing structure. Only people with 100+ accounts will be hard it. You can transfer the extra 10/20 cents charges to customers. However, be sure to properly communicate the price changes to customers. cPanel Alternatives With this unexpected change, people have already started finding alternatives. Some of them are: DirectAdmin InterWorx Virtualmin/Webmin VestaCP What’s Next? cPanel, WHMCS, SolusVM, and Plesk are under the same umbrella – The Oakley Investment. Here’s the timeline: Oakley acquired Plesk in May 2017 and there was an insane increase in prices between July 2017 to October 2017 WHMCS prices hiked in Aug 2017 Oakley Acquired cPanel in August 2018 and the price hiked in June 2019 SolusVM, are you next? We hope not. https://magehost.com/blog/cpanel-price-rise-impact-solutions/