Jump to content

All Activity

This stream auto-updates     

  1. Past hour
  2. JcM NavBar Google Translate V1.0 Phoenix A simple add-on that allows you to place the Google translate widget into the navbar on your site. Your customers can now translate your website with a simple click on one of the languages in the drop down list. It’s a simple no core change add-on so just copy files over go to admin and install and set up. That’s it enjoy. Has been tested on Phoenix 1.0.3.0 only.
  3. Dan Cole

    HoneyPot Captcha

    I thought that was an excellent suggestion too. I think Matt @ecartz is doing some work in this area and while it might be beyond the scope of his project it is probably worth bringing it to his attention. Which I guess I just did. Dan
  4. JcMagpie

    HoneyPot Captcha

    A good solution , go one step more and add guest checkout, this way no need to make account at all for those that object.
  5. milerwan

    adding to specials and whats new boxes

    @multimixer is true, you need to add a new field in the products TABLE to increment product specifics... There is no other way to make it.
  6. tonymazz

    HoneyPot Captcha

    I appreciate all of the input and no, I have not tried recaptha 3 yet. I will give that a try on one of our sites. As to the clients complaints, I do not get it either. Although there have been times that I have become frustrated with ReCaptch when I have to pick 3 images that match a topic like traffic lights, storefronts etc. The end result is that I realize it is for security and get on with it. It seems people are spoiled with instant purchases (ie PayPal, Amazon, eBay etc). I even have had a lot of clients complain about making up a password and then retyping it in, which is why we now send them a random password in the Welcome email. And yes, I do think some logic on Post Code format, as well as country/state mismatch, is a good idea for many reasons. I found these postal code patterns in HTML5 -- http://html5pattern.com/Postal_Codes to offer some initial guidance. I did mitigate this issue (for now) after the dialogue yesterday gave me an idea. Since we really do not want or need signups until a purchase or quotation is made, I removed "create_account" from all of the pages as well as the login page. Renamed the "create_account" (changed it in filenames) and now it is only offered once something is in the cart and they hit "Checkout". Perhaps this should be an option for future versions, to deploy without core code changes? A hook that would show create account (and on which pages) or not. Thanks again all!
  7. Today
  8. raiwa

    [CONTRIBUTION] Sloppy Words Cleaner

    Uploaded update: Sloppy Words Cleaner 3.2.2 Changes versus Sloppy Words Cleaner 3.2.1 - fixed postcode to all uppercase . Thanks to @Mitch70
  9. burt

    HoneyPot Captcha

    Sure it can. Easy as 123.
  10. JcMagpie

    HoneyPot Captcha

    Then you have not applied it correctly. 1) It will stop 99% of all fake accounts made by bot's ( nothing can stop human factory fake accounts) 2) Have installed on about 20 sites that were getting fake account problem has stoped on all sites. So yes it does work. 3) Your customers complain about you keeping them safe ( stupid cutomers no?) Also you can change recpatcha so customer is not required to do anything ( invisable cpatcha) simply pick the one you are happy to work with.
  11. ecartz

    HoneyPot Captcha

    You could compare a few things though. In this example: the country is Australia. I don't believe that Australia has a state named Alabama (the US does have a state by that name). I suspect that the postal code is not valid for Australia. There are probably rules that an Australian could explain. Wikipedia suggests that in Australia, all post codes are three or four digits. In the United States, all zip codes are either five numbers or five numbers followed by a hyphen followed by four more numbers. So for a US zip code, you could check that the first five characters are numbers and the sixth character was a hyphen followed by digits in seven through ten. I'm guessing that an Australian could provide similar rules there. Perhaps add a postal code format regular expression to the countries table. It could be '{.*}' by default but something like '{\A\d{5}(?:-\d{4})\z}' for the US and '{\d{3,4}}' for Australia (none tested). Given how lazy spammers are, just filling in about ten formats should cover most of what they'll attempt: Afghanistan, Albania, Algeria, Andorra, Antigua and Barbuda, Argentina, Australia, Canada, United Kingdom, and United States. Perhaps later you might add Brazil, China, India, and Japan. Like in the US, single country stores are probably common in those places. And single country stores can more easily give the format used in their country.
  12. BrockleyJohn

    HoneyPot Captcha

    v3 does, though, and real people almost never see it. If you can live with having a logo somewhere on each page (not necessarily the floating in-your-face one) it's definitely worth considering.
  13. Xeretha

    adding to specials and whats new boxes

    I had a similar problem in the plugin. It was necessary to change the line and I did not understand which one and how.
  14. Nothing is working. The problem derives, I believe, from the mixture of bootstrap components. I think it is going to be more time efficient and ultimately more reliable to join you all in Bootstrap 4. Yuck. Thanks for your help.
  15. Jack_mcs

    HoneyPot Captcha

    @tonymazzRegarding the account details you posted, unfortunately, there isn't anything shown there that would allow the code to identify it as a fake account. While a person can look at it and see that it is fake, from a coding point of view, it is legitimate since it has valid entries for an account. I suppose a check could be added to see if the street address contained number and letters, or if just letters (which can happen) that it be at least two words. But that might be chasing a never ending list of possibilities. Another check could be to see if the state and country match. Those details are in the database so it would not be difficult to check them. I will plan on adding this as an option. Another check could be the post code. According to Wikipedia, the postal code of all countries that use one has at least one number in it. I will plan on adding this as an option. You don't mention if you are using the IP List option. If not, you should be. And make sure to set up a cron job for it or the list won't be useful. If you can identify some common letters that are not normally used, you can include those in the bad words option. For example, the suburb has an entry ending in "vxqd". I can't imagine word from any country using that. The entries in the fields are probably just randomly created so adding words like this may not help, or only a little, unless you are seeing them used over and over. As for sending emails, be sure you have the options set to block email addresses and url's in the forms. Depending on your version of oscommerce, there might be a setting to limit how often emails can be sent. By raising that number to something higher, like 30 minutes, it might make it difficult for the spammers to send out large numbers of emails. That's all I can offer on this sort of problem. If you, anyone, can see something else that should be checked, please post it here.
  16. Add role="button" after href="#" will make the click to do nothing.
  17. Yesterday
  18. cables24h

    HoneyPot Captcha

    No need to Noodle. What is say is right. Your DB MIGHT be flood. Who cares if it is a legit user or not. He never buy anything. Remove them from DB, no need of them. Even the "legit ones"............. they not buy. Useless. Drop them. A serious problem is the "contact_us.php" for a SHOP OWNER. That is kind of pages should be somehow be protected.
  19. tonymazz

    HoneyPot Captcha

    My screenshot was from the admin side. We automatically send random generated passwords to the client via welcome email and try to collect minimal info at the time of checkout. I thought about the email confirmation email, however over 75% of our clients want to just check out. Any delay in the checkout process can result in a lost sale. So that would not work. I agree with you on this. Should any visitor even be creating an account without an actual purchase to start with? An option in admin could toggle that as an option for those that would. In our case we are not interested in people signing up for a subscription or discounts as some commerce sites do. Perhaps, on the confirmation page the client is offered the opportunity to create an account at the end of the checkout confirmation (admin can set default). So, create_account would not be offered as a standalone, automatic account creation would only occur after a bonafide purchase. And of course the admin would need to be able to create an account from admin side. I will noodle this more.
  20. MITCH70

    [CONTRIBUTION] Sloppy Words Cleaner

    @raiwa Changed in swc_hooks.php if (isset($postcode)) $postcode = $this->RemoveShouting($postcode); to if (isset($postcode)) $postcode = strtoupper($postcode); and works correctly now.
  21. cables24h

    HoneyPot Captcha

    Is it not here where it all starts from? As soon when fill the form, osCommerce instantly log you IN. Right? you can put anything you want in the registation and it it is accepted. WORSE........... you are instantly logged.......... right? Do not blame me here as the MESSENGER.
  22. cables24h

    HoneyPot Captcha

    Stupid argumentation You not VERIFY anything. The address of the user is not verified. for THAT NO legitimacy is conserved during the register process. ( this could be blamed to osCommerce itself or to module makers who chosen to cover this kind of failure) Not a legit resource to start with.
  23. Sorry it's not clear what you're trying to do. a link to your site so that we can see what you're trying to do ?
  24. Thanks. With href="javascript:void(0)" the pulldown doesn't function. Neither with it removed.
  25. cables24h

    HoneyPot Captcha

    Here there is a compromise. Now it is the job to put it in oscommerce with a click and GO. reCaptcha is there. HoneyPot is there. How can put in in osCommerce without change a single line of core code? What is need to allow BOTH kind of protection into osCommerce and keep EACH as an individual module, still............ somehow..... ( not osCommerces problem), work together. All the others seem to manage THAT. Just NOT osCommerce.................. how is that?
  26. you can also try replacing href="#" with href="javascript:void(0)", or remove the href all together.
  27. MITCH70

    [CONTRIBUTION] Sloppy Words Cleaner

    @raiwa Noticed that the postcode not working correctly. For example must be 4545BE and swc changed it to 4545Be. All letters must stay capital. Could you check.
  1. Load more activity
×