New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
We do not disclose such information in order to protect the safety and privacy of the product. The software was publicly released. Can create a trial license and review all the codes. That's why we rely on our product. That's why you can believe it.
You can be sure that we will provide this table soon. We're claiming it's better. Just try and see.
I wouldn't be able to join you on this. The example you gave is just a different letter. Do you think there's a single letter difference between WHMCS and WSCMS ? You should have your eyes checked.
With this thought, beginning with W, an automation can not be done. This is so wrong.
If Whmcs is $11 through dealership,
Wscms is $10 through dealership.
Please review;
https://www.sitemio.com/en/category/partnership-dealership
Please get rid of the prejudice.
You Are valuable to us.
If the community and the rulers think so, this topic may be closed. We respect that.
Thanks.
A fact that a product, especially a SaaS has being publicly released, does not prove if there are holes and vulnerabilities of this product. All serious SaaS and PaaS do hire a well known external audit IT firm to check as third party the software. How this can have any relation with protection "of the safety and privacy of the product"? A lot of products, many of them even open source, are publicly released and are famous, but when the first security incident occurs, then, any good external security audit that checks the product do find major holes that could be avoided if this check was done before the incident...
A tech guy, even more a plain user, do not have a clue about security audits and there is a special section in the IT industry that does those checks. If you think that, just because you use it and it is a public software, eliminates those needs, then, sorry but I cannot think your SaaS as secure (or not secure). Even more when it is not really tested (a real test is when you gain a really big client base and let the time shows about the vulnerabilities).
OK, if you do not find that WHMCS is very similar to WSCMS, then, maybe I am blind. But I am not stupid...
"It deosn't mttaer in waht oredr the ltteers in a wrod are, the olny iprmoetnt tihng is taht the frist and lsat ltteer be at the rghit pclae. The rset can be a toatl mses and you can sitll raed it wouthit porbelm. Tihs is bcuseae the huamn mnid deos not raed ervey lteter by istlef, but the wrod as a wlohe."
Source
I do not have any prejudice. I don't even use WHMCS atm. But I have seen a lot of new providers, software makers, platforms and SaaS than have similar claims like yours and soon enough their clients discover major flaws, vulnerabilities and bad practices or false advertisements.
In any case, good luck with your product, I really hope to be proven as really safe, much more rich to features and cheaper than the well known alternatives.
@Sitemio follow his advice. He is completely right.
In relation to the issues you specify, our management unit will provide detailed analysis and evaluation.
We care about your thoughts.
Thank you for your time.
It looks WSMCS offers fraud control. Does it support FraudLabs Pro like in the WHMCS 7.7?
Please do read up on Kerckhoff's Principle, which does not just apply to cryptography, but also to security in general.
To summarize it: a system is only secure if it cannot be compromised even when the attacker knows every detail of how it works and how it's been tested. If it's risky to release information about your testing processes, that means you probably have a security issue that needs resolving.
Both of those are reactive and non-exhaustive tests. While they can work in addition to other measures to find overlooked issues, they're not any kind of security assurance in and of themselves.
Are you also applying proactive measures, such as having a well-defined set of threat models, and developers that have been trained to go through that threat modelling process for all of the code they write, as well as general code quality assurance processes?
Nice one.
@joepie91 I’m placing a bet I can copy the session cookie from my browser and move it to a browser 12,000 km away. (and I bet that it’ll still resume the session)
Honestly, like you said — if there is nothing to hide, why not release the “testing” methodology?
If you want to acquire an Indian Web Hosting market then try to develop,
Ccavenue Payment Module or Payumoney Payment Module
Rest things are damn good!
I hope you aren’t insinuating tying a session to an IP address
How about tying a session to the user's city...?
That'll break the moment your geolocation database updates, and those aren't generally going to give you an accurate city to begin with anyway. Tying a session to an IP or IP-derived data isn't really all that useful in practice.
I mean it makes no sense when a user’s IP suddenly changes to one in another country... I’m not too familiar with geolocation services but I’ve always assumed that companies would track a user’s city/country along with their session.
Nice to know though — thanks for the info! :-)
I guess the right thinking is that it's too little and too late, if you're having to protect the session in such a way?
Most places that do this generally track at login point in time. If you are a valid session moving from US to CA on the same device (using device fingerprinting and all sorts of other shit), you are generally allowed to hold your session (for non-billing sites)
If you log in from the same device fingerprint in another city, it's usually allowed. If you log in from a different state/province and a different device with no cookies at all, you might be prompted for MFA if you don't have 2FA set up
WSCMS sounds too much of WHCMS... This is causing me to experience a lot of internal errors.
Agreed.
this sounds really good. Need to try it
Your demo is broken, but hey your licensing system is working great!
Oh no! The authorities were called!!!!
That is a ridiculous message.
So, if it's bitching about the hostname, just stuff $_SERVER['SERVER_NAME'] into the config file, and call it a day. Good luck with your licensing, @Sitemio.
Not that I'm actually suggesting such a thing.
Hello again everyone,
We took into account the feedback from you, and we changed the name of the brand. Now referred to as WiseCP.
Click on the link below to review official web site.
https://www.wisecp.com
As we said in the beginning about security, we rely on our product. Not of any security weaknesses. Anyone can examine the codes or any specialist can check. They're not going to find anything about the security weakness.
Thanks for your comments and thoughts.
Wise decision.
WisdomCP fork forthcoming.
Some powerful security measures from WISECP v1.6.2
If the location verification is active;
If two-factor verification is active;
The database access information is automatically encrypted.
There’s more to it:)
Let’s sample through Whmcs; In Whmcs via the database you can define a user’s email address to the administrator and reset the password.
Even if the database is accessed in the WISECP, you will never be able to do this. Of course, you need to find the database login information first.
He now, has your address mate. Run. Rapido!
I would buy it but.. I can get WHMCs from $8/mo, why would I expend almost twice for something with less features.
Reduce the price, onyl you get more well-known reduce it. But with Besta/WHMCS right now.. good luck with that price.
Put to $3-5/mo and you will be getting a lot of new clients. I know you must value your work but marketing is like that.. once you get more and more clients you can start to increase the price.. truth can hurt but this is just what I think.
Also, offering only 7 days for trial.. when it is a new product.. Blesta offers a full month.
Your product can be good but with bad marketing..
We are working on branded monthly and lifetime license fees. Thus it can be taken at a cheaper price.
I also disagree with your "less features " thought. Because WISECP is more "superior, safe and functional " than both. You can understand this by experimenting.
7 days, we think it's an ideal time to test and try a system.
Thank you for your interest.
Functionality also takes into account integrations though. Do you really mean to say your product has more integrations than WHMCS/Blesta have by now?