When a new host comes along, one of the standard checks I make is to ensure that they are not using a cracked version of WHMCS.  Since time immemorial, the LowEndTalk selling rules have stated that “Using a nulled WHMCS (or other nulled billing software) grants you and your company a lifetime ban on LowEndTalk.”

This is for two reasons.  First, we don’t want to support software piracy, regardless of our feelings about the publisher.  And second, if a provider can’t pony up a few bucks for a WHMCS subscription, how stable can they really be?

WHMCS is protected with IonCube, which is a PHP encoder.  Only WHMCS has the key to modify the WHMCS PHP code, and that PHP code says “phone home and make sure I’m licensed”.  So in order to modify WHMCS to disable license checking (nulling the software), you’d have to hack IonCube.  There have been IonCube hacks in the past but it’s been a long time since I’ve heard about one.  Likely anyone running a nulled WHMCS in 2022 is using a very old version of the software.

We did a mini-tutorial on how to use WHMCS’s license verify page.  But what I’ve noticed over recent years are interactions like this:

New Provider: “Here is our offer for LowEndBox!”

Me: “Sorry, but you’re using a nulled WHMCS”

New Provider: “No we’re not!  Honest!  Check again!”

And when I do, WHMCS now says it’s legit.  Either the host got busted and quickly bought a license, or something doesn’t work right with WHMCS’s license verification page.

I’ve taken to holding the offer for a day and checking again before I reply to the provider.  So far, this usually clears it up.  Of course, it’s possible the host just happened to decide to get legit during that 24-hour interval but that won’t happen repeatedly.

What’s been your experience?  We’ve been discussing this on LET recently and others have stated similar problems.  Let us know if you’ve run into this problem in the comments below!

raindog308

Raindog308 is a longtime LowEndTalk community administrator, technical writer, and self-described techno polymath. With deep roots in the *nix world, he has a passion for systems both modern and vintage, ranging from Unix, Perl, Python, and Golang to shell scripting and mainframe-era operating systems like MVS. He’s equally comfortable with relational database systems, having spent years working with Oracle, PostgreSQL, and MySQL.

As an avid user of LowEndBox providers, Raindog runs an empire of LEBs, from tiny boxes for VPNs, to mid-sized instances for application hosting, and heavyweight servers for data storage and complex databases. He brings both technical rigor and real-world experience to every piece he writes.

Beyond the command line, Raindog is a lover of German Shepherds, high-quality knives, target shooting, theology, tabletop RPGs, and hiking in deep, quiet forests.

His goal with every article is to help users, from beginners to seasoned sysadmins, get more value, performance, and enjoyment out of their infrastructure.

You can find him daily in the forums at LowEndTalk under the handle @raindog308.