Jump to content

Jack_mcs

Members
  • Content count

    29,771
  • Joined

  • Last visited

  • Days Won

    129

Everything posted by Jack_mcs

  1. Jack_mcs

    HoneyPot Captcha

    This addon prevents multiple emails from being sent through the forms on the site by adding a hidden challenge. Sending emails through the forms is a favorite thing to do by spammers. This has traditionally been handled by Googles Recaptcha code but that causes too much of a challenge in many cases and can easily frustrate your customers. This code doesn't present a challenge for the customer at all. The checking is done without the customer even knowing it. The code will work in any version of oscommerce but the instructions are just for the Community Edition and just for the contact us page (due to time constraints).
  2. Jack_mcs

    HoneyPot Captcha

    This has nothing to do with this addon. Please do not post unrelated things in a support thread. It is discourteous to others trying to follow the thread.
  3. Jack_mcs

    Easier Attributes

    Try this array( 'code' => FILENAME_PRODUCTS_ATTRIBUTES, 'title' => BOX_CATALOG_CATEGORIES_PRODUCTS_ATTRIBUTES, 'link' => tep_href_link(FILENAME_PRODUCTS_ATTRIBUTES) ),
  4. Jack_mcs

    Easier Attributes

    This addon is meant as a replacement for the Product Attributes section in admin, for any version of oscommerce. The main advantages of it are: Ability to add/edit/delete attributes quickly (very quickly). A multi-select list that allows adding attributes to many products at once. Ability to search attributes. For those of you with a large number of attributes, you will probably be amazed at how quickly this responds when compared to the existing attributes code. Please note that all of the sections are not completed. The basic attributes and search code is complete, I think, and the Options code is close to complete, if not complete. But the Values and Settings sections still need to be worked on. The old attributes section, or any addon for attributes that is installed, will still function so these unfinished parts won't cause any problems. I wanted to get it uploaded as it is now to start getting feedback on it to better know what to work on. So if anyone tries it, please let me know of any problems, suggestions or questions.
  5. Jack_mcs

    HoneyPot Captcha

    Core code changes are not required for this addon in Phoenix. Where are you seeing that requirement?
  6. Jack_mcs

    HoneyPot Captcha

    @tonymazzThanks for posting that. It looks useful.
  7. Jack_mcs

    HoneyPot Captcha

    @tonymazzRegarding the account details you posted, unfortunately, there isn't anything shown there that would allow the code to identify it as a fake account. While a person can look at it and see that it is fake, from a coding point of view, it is legitimate since it has valid entries for an account. I suppose a check could be added to see if the street address contained number and letters, or if just letters (which can happen) that it be at least two words. But that might be chasing a never ending list of possibilities. Another check could be to see if the state and country match. Those details are in the database so it would not be difficult to check them. I will plan on adding this as an option. Another check could be the post code. According to Wikipedia, the postal code of all countries that use one has at least one number in it. I will plan on adding this as an option. You don't mention if you are using the IP List option. If not, you should be. And make sure to set up a cron job for it or the list won't be useful. If you can identify some common letters that are not normally used, you can include those in the bad words option. For example, the suburb has an entry ending in "vxqd". I can't imagine word from any country using that. The entries in the fields are probably just randomly created so adding words like this may not help, or only a little, unless you are seeing them used over and over. As for sending emails, be sure you have the options set to block email addresses and url's in the forms. Depending on your version of oscommerce, there might be a setting to limit how often emails can be sent. By raising that number to something higher, like 30 minutes, it might make it difficult for the spammers to send out large numbers of emails. That's all I can offer on this sort of problem. If you, anyone, can see something else that should be checked, please post it here.
  8. Jack_mcs

    HoneyPot Captcha

    Based on this, it is obvious you haven't looked at the code. But giving you the benefit of the doubt, please post how someone can override php code. If they are able to do that, then much of the Internet is broken.
  9. Jack_mcs

    HoneyPot Captcha

    You are confusing Honeypot concepts with this addon. They are very different.
  10. Jack_mcs

    HoneyPot Captcha

    OK. When you have the details I mentioned please post them here and I will take a look.
  11. Jack_mcs

    HoneyPot Captcha

    As mentioned in the instructions, please post the details of an account that was created along with your HP settings. Otherwise, I am just blindly guessing. I don't understand what you mean by this since the release version of HP doesn't have an option to block IP's. You have to do that manually.
  12. Jack_mcs

    HoneyPot Captcha

    They should never get past this point, assuming you have the telephone and/or fax fields showing. The Honey Pot code checks for letters in those fields and will stop the creation if found. Also, be sure you have the option to create account check option enable or all other account checks will be ignored.
  13. This isn't a new contribution and I don't claim the code in it. This is an update to the excellent work Chemo did on the Google XML Sitemap Feed located here: http://addons.oscommerce.com/info/3233 - version 1.3. It was added as a new contribution do prevent the corruption that exists in so many contributions lately. This version includes the following changes: - Manufacturers site map - Specials site map - Human readable output The feeds automatically adjust to match the urls if Ultimate SEO is installed, thus preventing some blocked url's by the search engines. If you have version 1.3 of the above contribution installed, you can just upload all of the files to update to this version. Be sure to run the sitemap afterwards though. Jack
  14. Jack_mcs

    Google XML Sitemap SEO

    I see the code in my shop but not in the package. I must have forgot to include it or deleted in an earlier version. I do apologize for the mistake. To fix it, edit the googlesitemap/index.php file and find this line: include_once('includes/application_top.php'); and add this below it: if (! empty(GOOGLE_XML_SITEMAP_SECURE_IP)) { $safe_ips = explode(',', GOOGLE_XML_SITEMAP_SECURE_IP); if (! in_array($_SERVER['REMOTE_ADDR'], $safe_ips)) { header("location:http:127.0.0.1"); } }
  15. Jack_mcs

    Google XML Sitemap SEO

    You could use the Secure IP option in the settings.
  16. Jack_mcs

    Convert a magento extension to oscommerce addon

    I'm hearing this more and more. The main problem you will have is with the database conversion, if you need to keep your current customers, orders and products. Once the database is working, then you just need to make sure whatever options you have in your Magento shop are in the oscommerce one. There won't be direct replacements but you should be able to find something close, though some older addons will need to be converted. As for the oscommerce shop, be sure to use the Phoenix version of you will waste a lot of time.
  17. Jack_mcs

    HoneyPot Captcha

    @tonymazzBe sure to apply the fix to the captcha.php file mention on the last page or two.
  18. Jack_mcs

    HoneyPot Captcha

    I'll rewrite the code in the next version. For now, if it causes problems then don't use it for that page.
  19. Jack_mcs

    HoneyPot Captcha

    It isn't defined. I will fix it in the next version. For now, just replace MODULE_HEADER_TAGS_HONEYPOT_CREATE_ACCOUNT_SECURITY_FAILURE with 'some text here' Be sure to use the apostrophes as shown.
  20. Jack_mcs

    HoneyPot Captcha

    That definition was added in the Frozen version. If you are using an older version of oscommerce, it probably should be removed from the honeypot code. In the display module, find this tep_draw_input_field("security_check", NULL, "required aria-required=\"true\" id=\"captchaAnswer\"") . FORM_REQUIRED_INPUT . ' and change to tep_draw_input_field("security_check", NULL, "required aria-required=\"true\" id=\"captchaAnswer\"") . '
  21. Jack_mcs

    HoneyPot Captcha

    The intention of the honeypot_verify_contact_us.php was meant to be a catch-all for all of the pages except create account. But I didn't revisit that code in this version since I was concentrating on the create account changes. Looking at it now, I can see some changes are needed but I think it will work. I checked the file you mentioned but don't see the code you mentioned. In general, any page that submits a form will have a line like this if ($error == false) { There may be multiple lines like that. The verify line of Honeypot should go right above the one before the code that accepts the input . Include the verify contact us file should work but any failures will report it is the contact us page where they occurred. That is not a problem with the code but can be confusing. For all such form pages, be sure to put the display line right above the submit button code and to check the page in the Honeypot settings. Please give it a try and let me know if it doesn't work.
  22. Jack_mcs

    HoneyPot Captcha

    No needed at all. I would rather have the suggests than not have them.
  23. It seems like every other question posted nowadays is about how to upgrade an older version of oscommerce and the op usually references the official version. This post is meant to provide a quick reference for how to convert an older shop to the current, recommended, one. First, the version that should be used is commonly called the Bootstrap, BS or Responsive version. It can be located here. One should not use the official version. The official version can be installed via the hosts control panel so it is easy to think that is the one to use - it is not. Since the BS version is not directly compatible with other versions, the following steps will be needed: Install the BS version into a new location Convert the database. See this thread for help with that. Install whatever addons the site needs. You need to be sure the addon will work with the BS version. This thread mentions specific ones but there are many others that will work. If in doubt, ask in the support thread for the addon in question. If you intend to use paypal, then install the Paypal App. At this point you should have a working shop. Test it thoroughly, especially the payment and shipping modules, before going live with it. When you are ready to go live, Mark your current shop as down for maintenance ( a simple index.html file is fine for this purpose ). Make a backup of the current shops database and files. Convert the database to the BS version. Replace all of the files with the new shops files. Edit the configure files so they work as the live shop. Remove the blocking page. If everything has gone correctly, the conversion should be complete.
  24. Jack_mcs

    HoneyPot Captcha

    Everyone - It was just pointed out to me that there is a line of test code present that shouldn't be there. To remove it, edit the includes/functions/honeypot.php file and remove this line: echo 'cmp '.$item .' - ' .strip_tags($item).'<br>'; That should only show up if html exists in one of the fields. Since the create account page should use a function to get the field, that code should never be reached. But some versions of oscommerce may not be coded correctly so it should be removed.
  25. Jack_mcs

    HoneyPot Captcha

    I don't think that would be any different from the hidden field already in the code but maybe I'm missing the point.
×