Jump to content

John W

♥Ambassador
  • Content count

    963
  • Joined

  • Last visited

  • Days Won

    18

John W last won the day on December 6 2018

John W had the most liked content!

2 Followers

About John W

  • Rank
    Woof Woof!

Profile Information

  • Real Name
    John W.
  • Gender
    Male
  • Location
    Orlando, Fl

Recent Profile Visitors

21,725 profile views
  1. Some editors and such can add a BOM to the begining of files, which can screw things up. There's another thread where that happened to a certificate file.
  2. Hi, about this thead, https://forums.oscommerce.com/topic/412455-icloud-email-servers-rejecting-emails/ where did you find the icloudadmin contact? I'm facing similar issue. Thanks in advance. 

    1. John W

      John W

      I found them through the link I posted that was returned in my email from them.  Your's might be different.  Check and see, but here's the one I got.  Please visit https://support.apple.com/en-us/HT204137

      After a couple weeks, I never had the problem again.  There were some threads I found searcing google, but it's been a while.

  3. John W

    Fake accounts

    Blocking by countries can make for big lists/files which can bog things down. CSF firewall and Apache both advise that it can slow things down. Plus, not always accurate.
  4. John W

    Fake accounts

    While my code snippet was blocking all the attempts, I noticed there were increasing in the amount of attempts. I started recording the ip addresses after noticing many started with 188.138. However, after blocking 188.138.188.0/24 in my firewall, there has only been one in a few days. In checking an abused ip db, that block shows up a lot.
  5. John W

    credit card skimmers (in JS)

    I've seen some Magento sites that are set up better and not so slow, but more ofthen than not, they are slow. I try to make my site as fast as I can. I also try to make my site secure. Actually, your post got me going on running different security scans on my site and I impremented a few changes to improve security. At the same time, I spent some time scanning cajungrocer.com and they are not very good for security. Problem is I like many of the items they sell, but they have a lot of room to improve. Here's a couple of the additions I made to my .htaccess today. Header always append X-Frame-Options SAMEORIGIN Header set X-XSS-Protection "1; mode=block" Header set X-Content-Type-Options nosniff A while back I added this Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" I also set secure cookie and some other settings.
  6. John W

    credit card skimmers (in JS)

    Hey PHil, thanks for this article! I actually shop at one of the six they say is still infected although I haven't in a while. cajungrocer.com sells as you would guess, Cajun food and ship nationwide. Actually, they had an OSC based site at first then switched to a slow ass Magento several years ago.
  7. John W

    MySQL 5.7 gotcha

    Jim, the Aria db engine is their next gen replacement for the MyISAM engine. https://mariadb.com/kb/en/library/aria-storage-engine/
  8. John W

    MySQL 5.7 gotcha

    jimlongo, are you using the Aria db engine on MariaDB? Is 10.3 the first time you've hit a problem with MariaDB?
  9. John W

    MySQL 5.7 gotcha

    Did you solve your error? Was it addon code or stock OSC code? Ultimately, Cpanel is moving to Maria and they didn't have MySQL 5.7 as an option until they were pressured into doing it. I'll probably stick with 5.7 for a while. I have Cpanel also, and the fact that downgrades are not supported has always worried me. In my case, I tested MySQL 5.7 on my test server, but I didn't do it thoroughly enough.
  10. John W

    MySQL 5.7 gotcha

    I need to expand on that. The default was only a problem when the field wasn't being used. In my case, the field just needed to be deleted. I'll run my test site some more looking for problems, but I have too many things going on right now and not enough sleep. It's hard being me sometimes.
  11. John W

    MySQL 5.7 gotcha

    I'm not positive on this, but it seems that it must have a default value and I think null is fine. I only had an issue with a couple old fields and it's because of the stricter settings. I upgrade Mysql so rarely that I don't remember all the issues. But 5.7 has some default settings that can cause issues. There's a warning on Cpanel WHm when upgrading to 5.7 it will likely cause problems. Problem with Cpanel is you can't downgrade, or at least not easily. This link is helpful https://dev.mysql.com/doc/refman/5.7/en/server-options.html#option_mysqld_sql-mode This link is also helpful as there are some files like best sellers and order history that will error with this setting on. https://dev.mysql.com/doc/refman/5.7/en/group-by-handling.html
  12. John W

    MySQL 5.7 gotcha

    It has to do with some of the strict options in sql mode enabled by default. Setting the server to sql-mode="" solved it, but I'd rather fix the problem rather than work around. In the two cases I ran into, it was an unused field anyway. Both were part of old mods that I should have removed anyway. I'm embarrassed because it errored on my live site. I normally test things out pretty well.
  13. John W

    MySQL 5.7 gotcha

    A change from MySQL 5.6 to 5.7 is that fields must contain a default value at least if nothing is being inserted. This happened to me when a table was modified for something added that later I removed and didn't remove the field. I guess there's two lessons here. Hope this helps someone ahead of time.
  14. John W

    Main page not loading

    WHM/Cpanel just updated version 78 to the release channel. One of the things the Security email suggests is upgrading MySQL to 5.7 even though 5.6 is an option. So, I installed MySQL 5.7 on my local machine to test, however it didn't have "ONLY_FULL_GROUP_BY" set in the sql mode. In the interest of learning I enabled it to see what fails. With a little reading in the " MySQL 5.7 Reference Manual " I've been able to correct the queries that triggered an error. I do find it really difficult when the queries run for thousands of characters off the page. So, for me I format the query to see it better. Like this one from bm_order_history where the error was o.date_purchased wasn't included in the group by. Seems like it would be best to correct the queries rather than turning off ONLY_FULL_GROUP_BY. $orders_query = tep_db_query(" SELECT DISTINCT op.products_id, o.date_purchased FROM orders o, orders_products op, products p WHERE o.customers_id = '" . (int)$customer_id . "' AND o.orders_id = op.orders_id AND op.products_id = p.products_id AND p.products_status = '1' GROUP BY products_id, date_purchased ORDER BY o.date_purchased DESC LIMIT " . MAX_DISPLAY_PRODUCTS_IN_ORDER_HISTORY_BOX);
  15. John W

    Fake accounts

    Actually, I get his point. When I was figuring out what to use to deny these guys, I thought about the country. I only have 3 countries in my list, and the last one is Jamaica, but I very rarely sell to there. Every one of the fake accounts was using Jamaica. They put Google for company and google for tax id, so I picked the tax Id.
×