FIMBLE

I look forward to its release in this case. Thank you for the reply.

I am looking forward to this, after years of osC being in a rut it is great to see an injection of enthusiasm from a new team. Sure, sad to see an era end however things must change, or they will die. OSC used to be the de facto shop software but has been passed by every other shopping package, some even founded on osC code! The old guard has gone and now it's time for a revamp. The Forum members who kept developing whilst HPDL lost interest were Valliant but doomed to fail. Now I see old osC has split off to another name, and the new will be fresh. You are not doing this for the good of the users and as such, I wonder what kind of price will be placed on the new version 4? Base model free, then addons that cost seem the way ahead. Have we lost a free shopping cart system that is easily changed by the owners with free addons forever?

Hello Sorry for the wait i've been busy. You paste the sections you want to use in your own HTACCESS file. Rgds Nic

HI Michael Try disable the osc_sec from working and try again, i think it might be this causing the blank screen. Once disabled you should see the blocked.php again, please let me know if that works otherwise i would need to have a peek Regards Nic

Hi Iyang 1) call the IP_Trapped.txt in your browser you should get a 403 message. www.yoursite.com/banned/IP_Trapped.txt 2) you can do that, you can have one called admin and one called personal, you are not limited to just the one folder, just a bit pointless; if you change the folder to admin then remove the line in the robots text for Disallow: /personal/ no-one is going to look for the folder. Regards Nic

Hello, Add your IP number manually to the banned/IP_Trapped.txt and see if you are them able to get the index.php, or contact_us etc.. pages. Suspect that as you said the IP's are not being added to the list that there is a problem with permissions still. Have you checked your error logs for any permissions errors, though these would normally display at the time. Nic

Good Morning First off have you made sure that you have added the application_top.php code just after the filemanager.php include? IP Trap is not and was never intended to block anything but an explicit call to the personal folder, once trapped it will ban the user form the site until it is sprung then it does no other type of protection, for this I would suggest security pro, and sec_osC from the add on's area as proactive defence is their function, IP Trap is more reactive. The htacess code can go anywhere within the htaccess file, the “ should not be there please remove prior to adding, the code incidentally prevents anyone from calling the text files in their browser and viewing the contents. Please get back if the trap still refuses to work. Rgds Nic

Hi Mike, There are many different add ons for security out there, but i would say Security Pro osC_Sec Nic

Hi Mike I just tested it and got banned and remiand banned. If you have a rapidly changing IP number then it will give the apearance of not working as the IP you got banned with has changed. As for your question about 777, it is not safe to run with permissions so high and you are running the very real risk of being hacked once again. For folders you should be looking at a max of 755 and files 644 (unless they need to be read / write, in this case 666) 777 will get you hacked again and its not a matter of if but when Nic

Hi Mike, After making sure it is installed corectly, try removing the IP numbers in the whitelist - see if that cures it Nic

Hello Have you tried to add / remove VIA FTP Program? Nic

change it to INSERT INTO configuration_group( configuration_group_id, configuration_group_title, configuration_group_description, sort_order, visible ) VALUES ( '199', 'WYSIWYG Editor 1.6', 'HTMLArea 1.6 Options', '15', '1' ); and try again, it just means that for groupd id 112 is already taken by something else Nic

Should say IMPORT --> Browse file --> HTML_WYSIWYG_SQL.sql --> [OK] a few tabs along on the right Nic

@jonanv & @artstyle This is the behaviour of an IP added to the Whitelist, @jonanv i just tried yours and got blocked and stayed blocked, it is working for me. Nic

Hi Jorgen I have just tried your sites IP trap and it is working ok, banned me and kept me banned. Please let me know if there is another issue Nic

Hi Rob, It will be permissions related, check you error logs to see any errors about permissions. Nic

Hello, thank you, Good bots; so long as you have your robots file accurately placed and it has the correct information in it will obey it and never stray into your disallowed area. If the robots.txt is not accurate or located correctly then you are at risk of banning one. Nic

Hi The IP trap will only catch that if you set the personal folder to admin once you have moved the real admin folder to a new name. Those files being called by the user should not exist on your site anyhow as they are and i have no doubt the user has "other" intentions than shopping on your site! IP Trap is just that it sits and waits, re active as it were, it is pro active once it has trapped an IP otherwise it will sit there ! Nic

Hi Wim, Make sure that your IP is not in the IP_Trapped.txt also, if it is it will over ride the Whitelist.txt Nic

Hi Wim, Do IP numbers get written to the IP_Trapped.txt file when they are banned? If you are sure its installed correctly then it could be a permissions issue, the .txt files should have write permissions, on a Linux server this is 666, i am not sure what it is on a Windows box though NIc

Hi Steve, Thats fine and will not cause any conflict with one another Rgds Nic

the "SetEnvIfNoCase Request_URI IP_Trapped\.txt ban <Files ~ "^.*$"> order allow,deny allow from all deny from env=ban </Files> SetEnvIfNoCase Request_URI Whitelist\.txt ban <Files ~ "^.*$"> order allow,deny allow from all deny from env=ban </Files> goes into your store main htaccess file, where the main files are like index, account, product_info etc... Nic

Hi Ken, Yes you are correct on both counts. Well done, and sorry for confusing you! Nic

Hello all IP trap updated and now is able to block user agents as well as IP numbers Nic

hi Jonny i think its a better idea to make sure you admin has been renamed and you have htaccess protection enabled, there is more than one way of finding your admin folder name and changing the name will not stop attacks to it, it will prevent automated scripts from attacking it as they are hardcoded mostly for "admin". So ensure you have done all you can to prevent attacks to your admin whatever it is called. Regards Nic