Jump to content
Latest News: (loading..)

phi148

Members
  • Content count

    249
  • Joined

  • Last visited

  • Days Won

    2

Everything posted by phi148

  1. phi148

    UPS Down?

    Anyone else having problems with UPS being down? I can't reach 153.2.228.50 which is hard coded in the UPS shipping module....
  2. Authorize.Net is phasing out the MD5 based transHash element in favor of the SHA-256 based transHashSHA2. The setting in the Merchant Interface which controls the MD5 Hash option will be removed by the end of January 2019, and the transHash element will stop returning values at a later date to be determined. Please contact and work with your web developer or solutions provider to verify if you are still utilizing MD5 based hash and if still needed to move to SHA-256 hash via Signature Key. Please refer your developer or solution provider to our Transaction Hash Upgrade Guide for more details and information on this change. **** I received the above in an email from authorize.net. Just curious if anyone is planning on updating the module to support this? More info here: https://developer.authorize.net/support/hash_upgrade/?utm_campaign=19Q2 MD5 Hash EOL Merchant&utm_medium=email&utm_source=Eloqua
  3. Hi John, Yes, SSL does provide security - but only between the client and the server. It does not ensure the data itself traversing the SSL is accurate. Hashing, encryption, etc.. protects the data itself from breaches and verifies the validity of said data. Is it overkill? Probably... and again personal preference. In my opinion, if the option to further validate my data is there, I'll take it. Notice they say "not as useful for AIM or CP merchants". If it was completely "not useful" then I imagine it would of been abandoned entirely.
  4. I use the MD5 code and I highly suggest everybody else use the new method with the sha512 hash. From a security perspective it is critical. Is security optional? Yes. However, why wouldn’t you take the extra five minutes to implement this for you and your customers security?
  5. I don't think any exist right now. I stumbled into this just today as I was searching for a solution to the same problem.....
  6. I always use the MD5 hash ... simply for added security. It is optional. However, as Wiljen and John stated above, this is not good news that AIM is now deprecated. I was not aware of that. We probably will survive for quite some time still... however, this will eventually bite us if we don't create a new OSC addon for the new authorize.net API
  7. phi148

    UPS Down?

    I haven't noticed a change in speed since switching to XML. I think it boils down to personal preference. The XML module is nice in that it should be more accurate based on the fact that it takes L, W and H into account and ties directly into your own UPS account number and negotiated rates. Probably best practice to get both versions working so you can switch easily should this happen again. We lost some sales because of it
  8. phi148

    UPS Down?

    I think I just have a super old UPS shipping module that finally bit the dust... probably due to the fact that UPS doesn't support older versions of TLS... I switched to UPS XML and that works. I'm sure there are others that may be using the old one... they'll figure it out soon enough
  9. phi148

    ULTIMATE Seo Urls 5 - by FWR Media

    | Id | User | Host | db | Command | Time | State | Info | +------+------------------+-----------+------------------+---------+------+---------------------------------+------------------------------------------------------------------------------------------------------+ | 1330 | xxx | localhost | xxx | Query | 1 | Waiting for table metadata lock | TRUNCATE `usu_cache` | | 1331 | xxx | localhost | xxx | Query | 1 | checking permissions | TRUNCATE `usu_cache` | | 1332 | xxx | localhost | xx | Query | 1 | Waiting for table metadata lock | TRUNCATE `usu_cache` Hey all I'm running into alot of metadata locks with my SQL database (you can see above what I'm talking about). I went and looked and the "usu_cache" table is empty. Is this even used?
  10. Is this module compatible with OSC edge (bootstrap)? Is this also still supported?
  11. I'm really shocked this doesn't appear to have been implemented. For example, I have a Widget. The model # for the widget changes with color. Widget (green) = Model 111 Widget (black) = Model 112 Widget (red) = Model 113 It would be great to just list 1 widget and then the model number change based on the color selected. Right now I have to manually change the model # before I send in the order to my vendor. A real PITA.
  12. phi148

    Store Search Bar (BS)

    I really like this search feature, except for 1 thing. It auto-selects the first item in the search results that appear below the search window. I'd rather not have any of them autoselected, so if the user just clicks "enter" it will automatically do an advanced_search rather than always picking the first item below the search box. Any idea how to change the code to do that?
  13. phi148

    Store Search Bar (BS)

    I found the problem. "Mod_Evasive" must be turned off in the apache settings. However, this is a bad thing, as mod_evasive helps to prevent DDOS attacks!
  14. phi148

    Store Search Bar (BS)

    [Sat Jul 21 20:35:39.370816 2018] [:error] [pid 14534:tid 139761074984704] [client xx.xx.xx.xx:62135] client denied by server configuration: /home/xxx/public_html/ext/modules/content/header/store_search/content_searches.php, referer: https://www.mysite.com/ I get the above error in my server logs. When I click on the item that appears in the search box.
  15. phi148

    Store Search Bar (BS)

    It is on a live site, so I disabled it until I can find out why I'm getting the 403 forbidden errors.
  16. phi148

    Store Search Bar (BS)

    Thanks for the add-on! I have something odd happening, the search appears to work, I see a listing of the products being populated when I type. However, when I click on the item I want to visit, I get a HTTP Forbidden error returned. I assume it may be something in my .htaccess ? I have cross site scripting disabled maybe that is doing it? I'm really not sure what would cause the forbidden. The URL looks correct.
  17. phi148

    View Counter

    Hi Jack, Today a hacker tried to use SQL injection on me. I received an email from view_counter telling me what IP to ban. However, then I noticed my website was down due to a change in the .htaccess file that view_counter made. The .htaccess file had this: deny from And that was all! Hence, my server raised an internal server error. Once I deleted the "deny from" it worked fine again. The email that was sent to me did have the IP address, so I went ahead and manually banned it. Do you know what went wrong here? Thanks
  18. So I was updating SEO on my site and then I noticed my main home page doesn't have a canonical link. I also noticed that category pages that contain more subcategories also do not have a canonical link. The code below from / includes/modules/header_tags/ht_canonical.php is what creates the canonical link. Can someone explain to me why the main index.php page and categories that don't have products are not included in this code? I would think they would still need canonical links.... function execute() { global $PHP_SELF, $cPath, $oscTemplate, $category_depth; if (basename($PHP_SELF) == 'product_info.php') { $oscTemplate->addBlock('<link rel="canonical" href="' . tep_href_link('product_info.php', 'products_id=' . (int)$_GET['products_id'], 'NONSSL', false) . '" />' . PHP_EOL, $this->group); } elseif (basename($PHP_SELF) == 'index.php') { if (isset($cPath) && tep_not_null($cPath) && ($category_depth == 'products')) { $oscTemplate->addBlock('<link rel="canonical" href="' . tep_href_link('index.php', 'view=all&cPath=' . $cPath, 'NONSSL', false) . '" />' . PHP_EOL, $this->group); } elseif (isset($_GET['manufacturers_id']) && tep_not_null($_GET['manufacturers_id'])) { $oscTemplate->addBlock('<link rel="canonical" href="' . tep_href_link('index.php', 'view=all&manufacturers_id=' . (int)$_GET['manufacturers_id'], 'NONSSL', false) . '" />' . PHP_EOL, $this->group); } } else { $view_all_pages = array('products_new.php', 'specials.php'); if (in_array(basename($PHP_SELF), $view_all_pages)) { $oscTemplate->addBlock('<link rel="canonical" href="' . tep_href_link($PHP_SELF, 'view=all', 'NONSSL', false) . '" />' . PHP_EOL, $this->group); } } }
  19. Thank you. That makes sense. However, shouldn't the home page have a canonical link? The current code does NOT provide a canonical link for your homepage...
  20. phi148

    Multi_Vendor_Shipping new thread

    I do have it operational after working with @Demitry on merging all the changes in. I think that Demitry may have been packaging up the changes to post an update to the community. I'm not sure if he has that ready yet or not. If not, it just takes patience, testing and merging ... but it does work :) I think MVS should be part of the base OSCommerce package in my opinion!
  21. phi148

    View Counter

    Well, all the tables are UTF8_UNICODE_CI ... so I guess I don't need to convert? I did notice that all my tables use a different engine than the view_counter tables. (MyISAM vs InnoDB) not sure if that matters.. I tried a repair on those tables, and I received this response: "The storage engine for the table doesn't support repair" Thanks!
  22. phi148

    View Counter

    Well, it happened again. This is very odd. I commented out the code, then manually executed the SQL queries and they ran fast as expected. Then I put the code back in, and the problem is gone again. I'm willing to bet by tomorrow I see the slowdown creep back in. Hmmm.
  23. phi148

    View Counter

    Yea, seemed very odd to me too. Only thing I can think of is that maybe I had too many days of data being stored so I hit a timeout or something like that. I have since reduced the amount of time I keep the information and all seems well now with the code back on and activated. I'll keep you posted if I am able to reproduce it in the future. Thanks Jack!
  24. phi148

    View Counter

    Hi Jack, I installed this add-on a few weeks ago, and then all of a sudden my admin slowed down drastically. All admin pages. I narrowed down the problem to be here in admin/includes/application_top.php /***** Begin View Counter *****/ if (VIEW_COUNTER_ENABLED == 'true') { /**** BEGIN FORCE CLEAR THE TABLES ****/ if (VIEW_COUNTER_FORCE_RESET > 0) { $dateNow = @date("Y-m-d", time() - (VIEW_COUNTER_FORCE_RESET * 86400)) . ' 23:59:59'; tep_db_query("delete from " . TABLE_VIEW_COUNTER . " where last_date < '" . $dateNow ."' "); tep_db_query("optimize table " . TABLE_VIEW_COUNTER); } if (VIEW_COUNTER_FORCE_RESET_STORAGE > 0) { $dateNow = @date("Y-m-d", time() - (VIEW_COUNTER_FORCE_RESET_STORAGE * 86400)) . ' 23:59:59'; tep_db_query("delete from " . TABLE_VIEW_COUNTER_STORAGE . " where last_date < '" . $dateNow ."' "); tep_db_query("optimize table " . TABLE_VIEW_COUNTER_STORAGE); } /**** END FORCE CLEAR THE TABLES ****/ include(DIR_FS_CATALOG . 'includes/modules/' . 'view_counter.php'); } Each if block was taking 10 seconds each. Do you know why this may of just started happening and how I can get it to stop? (I simply disabled "view_counter" in admin and everything is running fast again) I'm running OSC 2.3.4 Edge. Thanks!! Bill
×