These are known issues with the ConsignPro consignment software system.
Brian @ ConsignPro, if any of these issues are fixed in an update, please post a comment below with the version that fixes said issue and I will update this post. Thank you!
- ConsignPro update does not utilize “if older, overwrite“, thus, installing the update will not change your CP.exe version. The update installer has to be ran a second time, choosing ‘Repair’, to force the update to replace CP.exe with the newer one. This is reproducible through v9.17.
- ConsignPro does not appear to utilize implicit SSL when sending emails and instead, appears to utilize explicit. The result is, many ISPs will block email attempts, which is why some stores can send emails and some cannot.
- ConsignPro does not support TLS (Port 587).
- ConsignPro will lock-up for 30 seconds or more at launch, while it attempts to send the owner emails. This only happens if ConsignPro is unable to send emails, either based on its lack of support for explicit SSL, lack of support for TLS, or invalid email settings.
- Security Vulnerability — ConsignPro utilizes standard FTP to upload nightly backups, for clients utilizing the MyResaleweb backup service. The username and password are transmitted in plain text. All stores’ backups are stored with full read/write/execute access, in an unencrypted file and thus, are susceptible to data theft. Utilizing a secure upload process, changing the file-level permissions, and removing the backups from the VPS once uploaded, could all help alleviate this issue. This has been reported to Brian @ ConsignPro multiple times.
- If CP.exe crashes during shutdown, it can write bad values to the Employee table — specifically, the fields which control employee access. The result is the logged-in employee, will no longer be able to access ConsignPro upon the next login and will only be able to view the Make Sale screen.