KwiBill

Discussion in 'Coding, Scripting & Programming' started by KwiceroLTD, Mar 6, 2015.

  1. KwiceroLTD

    KwiceroLTD New Member Verified Provider

    126
    41
    Mar 6, 2015
    kunnu and MannDude like this.
  2. Aldryic C'boas

    Aldryic C'boas The Pony

    2,313
    2,651
    Apr 18, 2013
    Aldryic
    What level of liability are you accepting responsibility for should a database full of client contact information end up leaked due to exploit/compromise related directly to the software?
     
    MannDude likes this.
  3. MannDude

    MannDude Just a dude vpsBoard Founder Moderator

    5,034
    2,628
    Mar 8, 2013
    MannDude
    What level of liability does WHMCS or ClientExec accept when that happens? Or any other software?

    I'd imagine he'd probably just patch the issue, and release a statement, and ideally done as quickly as humanly possible to minimize damage.
     
    KwiceroLTD likes this.
  4. KwiceroLTD

    KwiceroLTD New Member Verified Provider

    126
    41
    Mar 6, 2015
    I offer no warranty on the software, once you buy it if you modify the core code, I accept no liabilities. I will if/once a bug is located, write a patch, test it to ensure it's working, release the patch, post a public announcement to notify every customer to download the patch to prevent compromising of their systems.

    I don't suspect SQL injection will be an issue, am using PDO with prepared statements, making sure nothing goes direct into the SQL query. I've put in security for other things like XSS,CSRF,etc. So I don't suspect the core software will be responsible for any exploit/compromise.
     
    Last edited by a moderator: Mar 6, 2015
  5. trewq

    trewq Active Member Verified Provider

    452
    205
    May 15, 2013
    Security is always an issue. There is always someone smarter than you.


    Have you had your code audited?
     
    AMDbuilder likes this.
  6. KwiceroLTD

    KwiceroLTD New Member Verified Provider

    126
    41
    Mar 6, 2015
    Yes, I have had the code audited by two individuals, if you have someone in mind, I'm willing to have the code audited once more.
     
  7. Onra Host

    Onra Host New Member Verified Provider

    92
    18
    May 23, 2014
    Have you talked to the guys over at Rack911 yet?
     
  8. KwiceroLTD

    KwiceroLTD New Member Verified Provider

    126
    41
    Mar 6, 2015
    No, however iirc Rack911 doesn't do web application auditing?
     
  9. Prestige

    Prestige New Member

    42
    6
    May 15, 2013
    Vlad from Safe or Not might be able to help.
     
  10. sv01

    sv01 Slow but sure

    426
    87
    May 17, 2013
    think about cost :D
     
  11. KwiceroLTD

    KwiceroLTD New Member Verified Provider

    126
    41
    Mar 6, 2015
    I'll contact him tomorrow morning.
     
  12. RosenHost

    RosenHost New Member

    55
    10
    Aug 14, 2014
  13. DomainBop

    DomainBop Dormant VPSB Pathogen

    2,260
    2,190
    Oct 11, 2013
    Licensecart likes this.
  14. Licensecart

    Licensecart Active Member

    368
    121
    May 22, 2013
    Last edited by a moderator: Apr 30, 2017
    HOSTBD24 likes this.
  15. DomainBop

    DomainBop Dormant VPSB Pathogen

    2,260
    2,190
    Oct 11, 2013
    ^^ I'd get that taken care of quickly because the company's annual return is due in less than 2 months (April 3rd) and if the CEO has disappeared and doesn't file in time then the other directors are liable (UK can impose fines up to  £5,000 and Companies House sends directors nasty letters warning of prosecution for late filing/non-filing)
     
    Last edited by a moderator: Apr 30, 2017
    Licensecart likes this.
  16. drmike

    drmike 100% Tier-1 Gogent

    8,573
    2,709
    May 13, 2013
    Dead project or?
     
  17. Licensecart

    Licensecart Active Member

    368
    121
    May 22, 2013
    Yep but who saw that it was good enough to get off the floor haha :D GVH of billing systems.
     
  18. jarland

    jarland The ocean is digital

    873
    562
    Apr 4, 2013
    I wish I had an ounce of an idea how to actually go about it :(
     
    Last edited by a moderator: Feb 29, 2016
  19. DomainBop

    DomainBop Dormant VPSB Pathogen

    2,260
    2,190
    Oct 11, 2013
    https://www.gov.uk/government/publications/terminate-an-appointment-of-a-director-tm01  <--sample forms and links to change/remove directors


    It can be done online but the person who set up the company probably has the login details for the web filing account so you may need to contact Companies House if you're not in contact with him to get yourself removed as a director.
     
    Last edited by a moderator: Feb 29, 2016
    jarland and RLT like this.