PlanetMaster

Quick question, would like to post some valuable system admin tutorials and information for the webflake community but not sure where to. Seems webmaster forums would be the closest choice but really is the poor cousin to SysAdmin. Just want to confirm that this would be the best place to start these types of topics? Thanks ~PM

Some more important security tips: Secure Headers IPS 4.4 has added a new headers section under Advanced Configuration unfortunately it isn't as good as they think. I think as a sysadmin this should be optional as I like setting my security headers in my web server this way they are carried across all applications not just IPS. Also their settings cannot be altered without changing the base code so there is no configuration for advanced users who understand the complexity and leaves little room for customization. Lets look at their settings From webpages on the domain only (Recommended) This will send an X-Frame-Options HTTP header with the value "sameorigin". This will only allow iframes to be used from the same domain. This is correct for embedding local content in iFrames. In cases for non IPS websites you should use DENY always! Using a custom Content Security Policy (Advanced) This will send a Content-Security-Policy HTTP header with the value you specify. You may need to choose this option if you have a legitimate need for your community to be embedded in an iframe on a different domain. This is very good header to protect against XSS attack but is very complicated for the average user. IPS option give very little info on how to use and quite frankly it shouldn't be an option in the application unless you don't have access to the web server. If you do have root access to configurations files than this should be set in the web server. Anywhere (Not Recommended) This will leave your site vulnerable to clickjacking and is strongly discouraged. This shouldn't even be an option, basically its saying "the hell with it I want the site to be vulnerable to the max" Not Working? Referrer-Policy doesn't get passed properly to the browser and again should be an option not hard coded in to IPS. Test your headers here https://securityheaders.com

Windows because most of the applications I use are Windows only for the most part. But for anything in development or server OS its Linux, Ubuntu specifically. Although I do have several dev servers on my Windows 10 using hyper-V and thats probably one of the best features Windows offers right now.

What type of software are you running? and the main programming language?

Let me understand cause seems to be a language issue. You want members to choose their own primary group from the groups you have created? I assume you don't want them to be able to access and staff or admin groups? These groups would be created just for this purpose and only those groups will be available for selection? Once they choose a new primary, the current primary goes to their secondary group?

Most download script sites are very expensive and nulled versions are garbage. If you use IPS 4 than why not do it with the downloads app? Iust make it the default app so it will be at the front of your site and design the templates to how you want it. Pretty simple solution and its free just your time in getting the layout designed.

Absolutely! Open Source is the way for me and all my IPS apps and Plug-ins. I have more success from my community and software users offering premium applications for free and having them support the development.

If its Nginx you would use a redirect from http server block like so: server { listen 80; server_name mydomain.com www.mydomain.com; return 301 https://$server_name$request_uri; }

The answer is simple, you need to query the database pretty much like so. Count posts for member (id) where forum id equals (ID) Now you will need to create a new app or perhaps just a plug-in to pull the actual data and display it thats the hard part if you don't have any programming skills. Kind of busy today but can get a sample gist up for you in about 24 hours if you don't mind waiting a bit.

Glad to hear it!

There is your answer, IPS from 4.2 to 4.3 upgrades chkeditor and you MUST have the proper version plug in for the proper version chkeditor or it will not work. On the page you linked are the available versions towards the bottom https://ckeditor.com/cke4/addon/colordialog You want it compatible with IPS 4.3 CKEditor 4.10, you most likely had 4.9 with IPS 4.2

Please provide more info: The name of plug-in and link to it at CKEditor site From your question I gather it worked after install and then stopped working at some point? How did you install the plug-in? surely that would help in finding it and deleting it.

Well it depends what type of attacks you are trying to block. You can modify your PHP.ini to block some attacks by changing the values of allow_url_include = "0" allow_url_fopen = "0" Disable Dangerous functions in PHP if you dont need them disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,shell_exec,proc_open,popen,system,exec, Also and probably more important is to use open_basedir to block remote attacks on system files, this allows your code to only open files in specific directories protecting sensitive system files. If using Nginx block scripts from being run in upload directories location ~ /gallery/(.+)\.(php|cgi|pl|php3|php4|php5|php6|phtml|shtml)$ { deny all; } location ~ /uploads/(.+)\.(php|cgi|pl|php3|php4|php5|php6|phtml|shtml)$ { deny all; } location ~ /downloads/(.+)\.(php|cgi|pl|php3|php4|php5|php6|phtml|shtml)$ { deny all; } location ~ /files/(.+)\.(php|cgi|pl|php3|php4|php5|php6|phtml|shtml)$ { deny all; } There are many other ways to tweak and protect your serer and applications but most importantly keep it updated with the latest security fixes

Welcome @Fennec I too had the inactive message. Didn't realize how long I hadn't been here.

Hello and welcome. Best practice for learning HTML and other languages is Google for tutorials/examples and Stack Overflow when you get stuck.

Hmmm do you have any programming skills? I am hiring developers all the time.

IPS hosting is so overpriced and under performing, I would try a regular host to get better performance at a fraction of the cost. Dont waste your money or time with IPS hosting.

So then its probably a server issue, thanks I will have a look at my configuration.

Installed properly, database setup etc, upon logging in any menu link I click logs me out. No matter what I cant do anything as I am returned to login page every time. Anyone having the same issue? I checked my nginx config and all is correct.

You should remove the entire block of code for this, not good to have useless arbitrary PHP code. So for instance in the videos app (index.php) you have this: /* You must purchase copyright removal before removing */ if( !\IPS\Settings::i()->devfuse_copy_num && !\IPS\Request::i()->isAjax() ) { \IPS\Output::i()->output .= "<div style='clear:both;text-align:center;position:absolute;bottom:15px;width:95%;'><a href='http://www.devfuse.com/' class='ipsType_light ipsType_smaller'>IP.Board Videos by DevFuse</a></div>"; } You should remove everything from "if" to closing bracket, its the same effect but leaves no useless code. Just a cleaner solution.