Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

design4dotcom

Pioneers
  • Posts

    10
  • Joined

  • Last visited

Profile Information

  • Real Name
    Michelle Dettlaff

design4dotcom's Achievements

  1. I have a client who uses osCommerce. He uses FedEx for shipping and it is automatic with FedEx module. He wants to offer ONE product that he will include shipping in the price. Therefore, the product will have the appearance of Free Shipping. We tried zero weight, but we have FedEx set up with a handling fee. So the handling fee gets applied to the order. We also tried to have a "discount coupon" for free shipping. But if the customer orders more than this one product and orders other items which are not free shipping, then the discount coupon gives free shipping for the entire order. Is there a way to have this one product have a separate shipping module? Thank you.
  2. We installed a few security features a month ago. PHP Intrusion Detection System http://addons.oscommerce.com/info/7374 Security Pro: http://addons.oscommerce.com/info/5752 Site Monitor: http://www.oscommerce.com/community/contributions,4441 Htaccess Protection: http://addons.oscommerce.com/info/6066 IP Trap: http://addons.oscommerce.com/info/5914 Since that time, our website has been OVERWHELMED with emails with "A Customer has received an HTTP Error" as the subject line. I think these are being geneerated by the PHPIDS (1st one above) The problem is that when I look up the IP address of hte error message, it says it's Google. The client received about 1000 (yes, that is not a typo) email messages within 1 week. 90% of which were webcrawlers. The frequency of the emails have not slows down since we installed this about a month ago. I know there is a way to block the IP addresses, but I don't want to do that for the search engines. also, WHY is Google looking for a page THAT DOES NOT EXIST. The url http://www.bellperformance.com/64KPN8Cyj/ does not exist. I'm so confused. Thank you for your assistance. Here is the error message with the URL. ------------------------------------------------------ Site: http://www.bellperformance.com. Error Code: 403 - Forbidden Occurred: 01/13/2011 17:25:10 Requested URL: http://www.bellperformance.com/64KPN8Cyj/ User Address: 66.249.67.111 User Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html) Referer: ------------------------------------------------------
  3. I've looked through this post and didn't find anything that related to our problem. We installed this mod two weeks ago on OS 2.2 and since that time, we have received a DELUGE of emails. No error codes, so I'm assuming the mod is installed correctly. Here is a sample email. The following attack has been detected by PHPIDS IP: 74.179.238.17 Date: 2011-01-13T17:28:13-06:00 Impact: 14 Affected tags: xss csrf id rfe lfi Affected parameters: COOKIE.__gutp=entrystamp%3D1294961008%7Csid%3D744d342d840d08c84bd807750173d6 7f%7Cstamp%3D1294961281%7Creferrer%3Dhttp%3A%2F%2Finfo.bellperformance.com%2 Fx-tra-lube-oil-treatment%2F%7Contime%3D246, Request URI: /index.php?cPath=23_28 Origin: 174.121.10.217 or this one. The following attack has been detected by PHPIDS IP: 208.87.234.180 (71.43.111.162) Date: 2011-01-14T09:42:24-06:00 Impact: 14 Affected tags: xss csrf rfe dos Affected parameters: COOKIE.__gutp=entrystamp%3D1294949465%7Csid%3D61d87f99248116c748031e0728a30d 09%7Cstamp%3D1294949775%7Contime%3D99, Request URI: /specials.php Origin: 174.121.10.217 They just keep coming! Are these hacks? Honestly, I didn't expect that many. Or is there something else going on? Thank you SO MUCH
×
×
  • Create New...