Clientexec comes equipped with a Security Section to protect your clients, your installation, and you. In order to configure these settings, navigate to Settings -> Security.
Enforce Password Strength - Enabling this forces both clients and staff to select a strong password in accordance with the rules you configure below this option.
Allow Admins Override Enforce Password Strength - By enabling this, administrators will not have to abide by the strict password enforcements.
Minimum Password Length - This is the minimum number of characters a password must be.
Forbid dictionary words - By enabling this, users will not be able to enter common words found in the dictionary.
Require Both Uppercase And Lowercase Characters - The password must contain both uppercase and lowercase letters.
Require Numbers - The password must include numbers.
Require Symbols - The password must contain at least one non-alphanumeric character.
Generation your Application Key - This Application Key lets you easily integrate Clientexec with 3rd party providers via webhooks to different callbacks.
The passphrase is created the first time you encrypt a credit card.
Reset Passphrase - You can enter in your old passphrase and enter a new one which will be used when processing credit card invoices.
Delete Passphrase - This will delete the passphrase that was used to encrypt your customer's credit cards. As the warning says, performing this action will require that your customers re-enter their credit card numbers.
BAN IPs generating security warnings -
By enabling this, Clientexec will automatically deny system access to
requests from IPs that persistently generate security warnings (by
issuing malformed requests, trying to access secured areas without
permission, etc.). This banning is performed according to the rules in
the settings below.
Number of security warnings triggering a ban - This setting and the following one determine the criteria used to ban an IP: how many security warnings in what lapse of time will trigger a ban.
Ban if matches fraud - Always ban IP if fraud plugin matches the ip as fraud. Note: The Fraud plugin [in Setup -> Plugins -> Fraud] should be enabled for this to work
Lapse of time for counting security warnings (in minutes) - This setting and the previous one determine the criteria used to ban an IP: how many security warnings in what lapse of time will trigger a ban.
ReCaptcha Public Key & ReCaptcha Private Key - By not entering a value, Clientexec will utilize its own public and private key. If you would like to use your own keys, you may.. You can get both your ReCaptcha Public and Private key here. ReCaptcha is commonly seen on various submission forms as a universal way to prevent spam.
ENCRYPT PASSWORDS - By clicking this, you will encrypt all the domain passwords in your Clientexec installation. Encryption is recommended for your data security.
This seems to relate to an older version of ClientExec, as revealed by the images.
Also, under the info for activating ReCaptcha, it says to turn it on by going to "Setup -> Settings. Then, find the setting titled "Require Access Code" and enable it. "
But it is not at all obvious what this refers to.