Jump to content

wolstech

Chief Risk Officer
  • Posts

    17,973
  • Joined

  • Last visited

  • Days Won

    675

Everything posted by wolstech

  1. So, Lily is an addon to a cPanel account, not a replacement for one. You keep the cPanel account, and actually end up with two accounts. Neither Lily nor Johnny support Node, so you have to move to Tommy if you want that. The Lily account gives you ASP.NET support, and that can be attached to any cPanel account on any server. I can set up the Lily account using your Johnny account, but you won't get Node support if I do. Also, the DNS for Lily domains likes to break if we move the associated cPanel account after setting up Lily, so it would be better to move to Tommy first if you also want Node. Do you want me to set up a Lily account attached to your Johnny account, or would you rather move to Tommy first (moving to Tommy requires you to either donate or try your luck at the very-difficult-to-get free one that's given away each day at midnight UTC)?
  2. It's not working, it's just placed where it will never execute so there's no chance for it to run and produce an error. A return statement ends the function and sends the program back to whatever called it. Putting unlink after return means the function ends and returns before it ever gets to the unlink statement.
  3. Database connections are not secure in and of themselves. Many (most) such connections are clear text, so you can just sniff traffic to get the password. Besides, even with TLS, odds are good you would be able to extract the password without decompiling the code by setting up a man-in-the-middle proxy on yourself and logging the traffic through the proxy while you start the program.
  4. There's no way for users to directly access /tmp because its shared by everybody and would be a security risk. Your code can remove the files you own though if you know the names. It's usually excessive use of Imagick (which is known for leaving huge temp files behind) or forms accepting uploads that aren't moved or deleted after upload. If your code is going to put files in /tmp, you either need to move them to somewhere inside your home folder if they are to be kept permanently, or delete them with unlink() if no longer needed. You should do this as soon as possible in your code after creating/using the file, as PHP will not clean up after itself, especially in cases where the script handling the upload times out or otherwise fails. Krydos can give more information on this subject, so I'll escalate this to him to see if he has any input.
  5. The transaction ID is all I needed. I found it. Quota has been increased. Thank you for the donation!
  6. It’s suspended for filling /tmp, which causes the server to stop working properly. This is usually due to software that is either poorly written, broken, or is otherwise failing to clean up after itself. PHP’s Imagick also causes this quite a bit. You’ll need to go through your code and figure out what’s causing this. Unsuspended.
  7. Are you logging in through https://heliohost.org/login/ ? This is the ONLY approved link that counts, and you must do it more often than once every 30 days (the accounts expire on day 30). If try to use unapproved links like "cpanel.yourdomain.heliohost.us", a bookmark that points to any cPanel page, or any link ending in .html, you will experience the issue you're seeing. Also, you must have cookies and javascript enabled as well. Also, threatening to defame us or sue us will result in a permanent ban. Please don't do that again.
  8. Account apesin has been suspended and niniola has been moved to Tommy.
  9. Users are only allowed to have one account. From our terms of service: We haven't given that permission to anybody in years since there's no good reason for it for 99.99% of users. You can host more than one domain on a single account, and you can buy disk space if you run out. The only thing that used to be approved was a Johnny + Ricky account because of Java support or Python versions, and that was before the days where accounts could be moved. Since it's still archived, you're fine right now. If you want that one moved and restored though, the account apesin will need to be suspended or deleted first. If you would prefer that account instead, I can suspend apesin and move this one for you.
  10. This account has been moved to Tommy. Thank you for the donation
  11. I'll unarchive this as soon as another user's account that's moving from Ricky finishes doing its thing... Also, do you have the donation transaction ID? The $5 can get you an extra 1000MB of space once I unarchive you.
  12. You can allow from any IP by simply adding % (a single percent sign) as an allowed IP address. For what it's worth though, any application that is running on end user computers and using direct DB access is a security disaster waiting to happen. Allowing clients to connect directly to the DB server means there has to be a username and password hiding somewhere in the client application that can be extracted and subsequently used to dump your database. The proper way to build this is to code an API that runs on the server, and give each client a unique API key. The API code running on the server ensures that the key can only access the data it's supposed to, and a key can be revoked if its compromised without breaking every single installed client (it'd only break the clients using that key).
  13. That's pretty typical of phishers honestly, assuming they bother to even ask (most of them don't waste their time since they know full well what they were doing isn't allowed, and just don't care). On rare occasion we'll get into an argument with one who doesn't understand that phishing is illegal or we'll get one who admits to phishing. We see a crapload of phishing on a weekly basis, mostly because we're one of the few hosts that proactively checks for and removes it (many other hosts don't actively go looking for phishing, and instead remove it reactively, typically when someone sends in an abuse report to point it out).
  14. You have a typo in the IP address. That should be 65.19.141.67 if you're on Johnny. Also, make sure you enabled remote mysql in cpanel for IP 197.210.76.111.
  15. It runs on our servers, but you administer it from your PC over SSH (or RDP if it's Windows). Buying a VPS is literally just renting a virtual machine on our server. It comes with a chunk of resources, an operating system, and an IP address. That's it. You install and configure everything else yourself. Just based on this question alone, if you were considering one, I can say that a VPS is probably not right for you. There's a steep learning curve to using one. We can help set it up, but there's time you'll need to spend and knowledge you need to have in order to maintain it down the road (applying updates, configuration changes, troubleshooting, etc.), which we don't really provide.
  16. It sucks we know. Unfortunately until our government gets its act together and changes the law, we can't do anything. We would love to serve you, but its illegal for us to do so
  17. @Pouyazeus: You were banned for being in Iran. See https://www.helionet.org/index/topic/43024-solved-hi-why-did-you-block-my-account-i-am-a-charity-site/
  18. It's banned for phishing. root@tommy [/home/piyush40/www/instagram]# ls -l total 64 -rw-r--r--. 1 piyush40 piyush40 35147 Apr 24 10:41 LICENSE -rw-r--r--. 1 piyush40 piyush40 911 Apr 24 10:41 README.md drwxr-xr-x. 35 piyush40 piyush40 4096 Apr 24 10:41 sites -rw-r--r--. 1 piyush40 piyush40 17669 Apr 24 10:41 socialphish.sh root@tommy [/home/piyush40/www/instagram]# ls -l sites total 0 drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 adobe drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 badoo drwxr-xr-x. 2 piyush40 piyush40 68 Apr 24 10:48 create drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 cryptocurrency drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 devianart drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 dropbox drwxr-xr-x. 2 piyush40 piyush40 105 Apr 24 10:46 facebook drwxr-xr-x. 2 piyush40 piyush40 86 Apr 24 10:57 github drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 gitlab drwxr-xr-x. 2 piyush40 piyush40 107 Apr 24 10:46 google drwxr-xr-x. 3 piyush40 piyush40 105 Apr 24 10:42 instafollowers drwxr-xr-x. 3 piyush40 piyush40 126 Apr 24 10:44 instagram drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 linkedin drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 messenger drwxr-xr-x. 3 piyush40 piyush40 91 Apr 24 10:41 microsoft drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 myspace drwxr-xr-x. 3 piyush40 piyush40 93 Apr 24 10:41 netflix drwxr-xr-x. 3 piyush40 piyush40 93 Apr 24 10:41 origin drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 paypal drwxr-xr-x. 3 piyush40 piyush40 91 Apr 24 10:41 pinterest drwxr-xr-x. 3 piyush40 piyush40 91 Apr 24 10:41 protonmail drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 shopify drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 shopping drwxr-xr-x. 3 piyush40 piyush40 124 Apr 24 10:41 snapchat drwxr-xr-x. 3 piyush40 piyush40 91 Apr 24 10:41 spotify drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 steam drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 twitch drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 twitter drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 verizon drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 vk drwxr-xr-x. 3 piyush40 piyush40 91 Apr 24 10:41 wordpress drwxr-xr-x. 3 piyush40 piyush40 91 Apr 24 10:41 yahoo drwxr-xr-x. 2 piyush40 piyush40 72 Apr 24 10:41 yandex root@tommy [/home/piyush40/www/instagram]# And from the shell script header: # SocialPhish v1.6 # Coded by: Hak9 # Github: [removed] # This script uses some Phishing Pages generated by SocialFish tool (UndeadSec) Yeah...we don't allow phishing.
  19. We cannot serve users who live in or are connected with Iran. 188.253.124.107 is an IPv4 address owned by aryasasol.com flag Arya Sasol Polymer Co. and located in Iran ip detail Iran (IR) .
  20. The reason you got blocked is because you were trying to log into an account that was banned due to being affiliated with the country of Iran. HelioHost is based in the USA, and due to federal regulations is not permitted to not offer service to users located in or affiliated with the country of Iran.
  21. Please check your email.
  22. I've moved the Ricky account zelda82 to Tommy for you. The queued page should go away within a few hours. Also, I've increased your space to 3000MB due to the size of your donation and pushed your login date out until the end of June as well. Thank you for the donation
×
×
  • Create New...