Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

altoid

♥Ambassador
  • Posts

    1,571
  • Joined

  • Last visited

  • Days Won

    13

Posts posted by altoid

  1. Jack, I am dealing with the 30 second timeout issue when attempting to delete the reference file. Reading back through the thread I found that time outs are server set. My tech support helped me set up a php.ini file to override the 30 second time out. After installation we verified the max_execution_time was reset to 90 seconds. But when I run the delete reference file, I still get a 30 second timeout error.

    Guidance please.

    Thanks

  2. My guess is that it has to do with permissions or some other server setting that is preventing the script from working correctly. If both hosts use a php.ini file, try comparing the two to see what differences there might be.

     

    Jack, catching up on this from last September. I just moved my second store to my new host, and the installation and functioning of Site Monitor is just fine. Now that I moved two shops from the old host (where I could not get Site Monitor to work beyond the 2.4 level) to the new host (where upgrading to 2.7 went easily), it appears to me that the problem was something within the host.

     

    I have noticed a couple other differences in how osC works on the new host, so it's apparent to me osC shops don't necessarily work the same from one host compared to another. I wish I had the technical background to figure this out but I don't so I can only report observations.

     

    Anyway, Site Monitor 2.7 up and running on both shops now.

     

    Thanks

  3. This may be of a spider [may be a rogue spider]. Please check the IP for its country and its owner. You could also check the IP's credibility in Projecy Honey Pot.

     

    We use KISS FileSafe at the following URL for monitoring the website files through a cron job:

    http://addons.oscommerce.com/info/7546

     

    KISS FileSafe seems to be better than Site Monitor.

     

    Thanks for responding, Honey Pot states the IP is from the USA and there is no associated bad behavior from this IP. Perhaps the PHPIDs alert was for a benign reason after all. It is curious that the action that started this was from an account history inquiry on the site. That only should happen when a customer inquires of his/her own purchasing history.

    Thanks again and I will look into KISS FileSafe.

  4. I had some activity in my shop last evening that has PHP IDS installed. If you could help me understand the results I'd appreaciate that.

     

    Apparently the url that caused PHPIDS was /account_history_info.php?order_id=496

    Two actions occurred there: REQUEST.alpha and COOKIE.alpha

     

    The "impact" scored 37.

     

    Based on what occurred then, the visitor was taken to /banned.php

     

    What caused that to happen involves a lot of text, I am not sure what is appropriate to put here though.

     

    It starts with:

     

    2648453f7149000089e4f34c29c9050065560000, RANDOM_ID=1f29b62ae4d14ab48b19062cba0bafa5, SiteDisplayed=&languageDisplayed=,

     

    in the middle is:

     

    LANCOMEAUTH=D5145B2191FB89DC157786991E8D2AC7EDB670CA5BB67F39E61410624922A5296624DE4EB756DF14DBD5598D570820A2AF5EA61225A055934ED2DC508120B9D5F8A8E4459F5C1FDDDEAD9D372460122DC08E796835DFE92355DEEEC19FEA9BD71F6A81575477F8C35E0BF9B461B0BF163AE85B07C229322A453479BE64D59443F7DAAEED57CCC74B97541E4EA79A25085A8A246A82CE61DB1C3E6D6279404BC0, UDMID=841451712, NETMIND_PERMSID=1539218442-1291756643

     

    I have not seen anything like this before so on the side of caution I put the IP on the banned list.

     

    The vistor came back a couple hours later and tried to access "/" with the same input and was taken to banned.php again.

     

    I ran Site Monitor after I noticed this activity and no files in the shop were reported as modified in any way.

     

    Can you help me understand what the visitors intention was?

     

    Thanks

  5. We have not done much modification to banned.php as that contribution is of someone else. Your following suggestion seems to be a better option:

    $ip_2ban_address = $_SERVER['REMOTE_ADDR'];
    

    in lieu of

    $ip_2ban_address = tep_get_ip_address();
    

    We would also use this modified code in our websites. Hope this solves that issue. Thanks for your suggestion.

     

    Based on what I read here, I have modified my banned.php file accordingly because the code change above is apparently a better way. I hope I correctly understood what the concept.

    I tested in my shop after modification and the banned.php activates when appropriate.

    Thanks

  6. There's something wrong with the addons section. It is a known problem and waiting for Harold to fix it. Until then, you may or may not be able to download it. You just have to keep trying.

     

    I just tried and the download is working now.

  7. Hi all,

     

    I'm looking for an addon that will allow me to skip registation for people?

    i'm only having paypal for the payment method anyway so i'll already get the billing address from there

     

    anyone know of something good and reliable?

     

    thanks

     

    There are a couple I know of.

     

    I was using Purchase Without Account very successfully.

     

    But later I added Sam's Anti-hacker Account Mods which does several things but includes a seamless checkout process that doesn't interrupt the process to force a create an account.

  8. I don't think it will cause any issues by not changing it but I haven't tested it so can't say for sure. The only way I can think it might be a problem is if you switched from the SiteMonitor section to some other section in admin. The fix will be in the next version though.

     

    I applied the modification, Site Monitor runs fine and I clicked around in Admin with no problems.

     

    Thanks again.

  9. Yep, you're right. It is the same mistake as before but in a different file. To fix it, edit sitemonitor_admin.php and change

      $admin = trim(DIR_WS_ADMIN, '/');
     if ($admin === 'admin') {

    to

      $adminSM = trim(DIR_WS_ADMIN, '/');
     if ($adminSM === 'admin') {

     

    Jack, I was not having that problem, but should I apply the recommended change as well?

     

    I am running your latest version.

     

    Thanks

  10. I FEEL REALLY STUPID! I have no experience with this and everyone keeps sending me to the same places:

    How to Secure Your Site

    SSL Implementation Help

    http://www.oscommerce.com/forums/topic/221438-sitemonitor/

     

    I have been to all those read through everything and still haven't a clue where to put the CRON line - php /home/username/public_html/catalog/admin/sitemonitor.php

     

    Can anyone tell me exactly what file and where in that file to put this line. I will deeply appreciate it.

     

    Thank you,

    Hope

     

    Hope, for using Cron Jobs with Site Monitor or other add ons that can be run by a Cron Job, you have to do that on your web host site. Go to your site hose's cPanel and look around for the Crons. Sometime's it's called an advanced feature.

     

    Hosts handle Cron Jobs different from one another sometimes. Some hosts don't offer them at all. Get in contact with support from your host and ask if htey can handle a Cron Job in the format you gave.

  11. I need help real bad. I am a dummy I guess. :huh: I have 2 questions.

     

    1-Is there documentation to configure both paypal standard, and osCommerce. My site has a SSL and has been configured by the admin group at justhost.

    2- Do I place the www. In the configuration .php in both admin include and catalog.

     

    Thanks so much

     

    Here's some good help on setting up PayPal standard.

     

    and here's some SSL help.

  12. Bruce, I don't know if you'll see this, but about a year after you ran into this so did I. Thank you for posting this, it corrected the very same problem I had.

     

     

    Ha ha, I took the long way around the barn and figured this out. It works perfect now. I googled "tep_round_up" and found a solution buried in the forums here. Anyone with USPS Methods V4.3.1 will need to add this to their catalog/admin/includes/funtions/general.php file: (I put it around where USPS Methods are located.)

    ////

    // Round up function for non whole numbers by GREG DEETH

    // The value for the precision variable determines how many digits after the decimal and rounds the last digit up to the next value

    // Precision = 0 -> xx.xxxx = x+

    // Precision = 1 -> xx.xxxx = xx.+

    // Precision = 2 -> xx.xxxx = xx.x+

    function tep_round_up($number, $precision) {

    $number_whole = '';

    $num_left_dec = 0;

    $num_right_dec = 0;

    $num_digits = strlen($number);

    $number_out = '';

    $i = 0;

    while ($i + 1 <= strlen($number))

    {

    $current_digit = substr($number, $i, ($i + 1) - $num_digits);

    if ($current_digit == '.') {

    $i = $num_digits + 1;

    $num_left_dec = strlen($number_whole);

    $num_right_dec = ($num_left_dec + 1) - $num_digits;

    } else {

    $number_whole = $number_whole . $current_digit;

    $i = $i + 1;

    }

    }

    if ($num_digits > 3 && $precision < ($num_digits - $num_left_dec - 1) && $precision >= 0) {

    $i = $precision;

    $addable = 1;

    while ($i > 0) {

    $addable = $addable * .1;

    $i = $i - 1;

    }

    $number_out = substr($number, 0, $num_right_dec + $precision) + $addable;

    } else {

    $number_out = $number;

    }

    return $number_out;

    }

  13. I tried testing it here with cache in gzip mode and it worked correctly. Be sure you have made all of the updates in this last version since a number of them had to do with cache.

     

    I will go through the install again just to make sure and thank you.

  14. Thanks for the update. I'm not seeing a problem with the canonical tag, on any of the pages. If you are using the Header Tags cache option you may have to clear it. And if you are using a url rewriter, try turning that off, refreshing the page and see if the tag is correct then.

     

     

    Jack, I think it has something to do with Enable Cache --> GZip option. When I clear the cache, then change to Enable Cache --> Normal option the category canonical works OK. When I go back to the GZip option, the problem appears to recur.

     

    So have cleared the cache and am leaving settings as Enable Cache --> Normal for now.

     

    Thanks

  15. Hi Jack, I just upgraded to the latest HT SEO. Thanks for working on this. Couple things.

     

    The canonical url (view source) doesn't have category info included. It's just the store URL. Meaning the canonical shows 'http://www.myshop.com/' instead of 'http://www.myshop.com/my-category-c-22_33.html' like I think it should.

     

    The products canonical is OK though.

     

    I am using the model number for products now in the tags. I think that will help search engines in some cases.

     

    And the FCKEditor is working now for the category descriptions. That's a nice tweak.

     

    Finally, what reason would there to be to use FCKEditor in the meta descriptions if they are only viewable in "view source"? Seems plain text would suffice?

     

    Thanks

  16. You could ignore this as the impact score is not on the higher side. Some of the intrusion alerts by PHPIDS may not be actual intrusions. PHPIDS has got its own parameter for flagging certain requests as intrusions. We need to verify each of them.

     

    Thanks for the follow up and I will ignore that alert. This was a new type of alert for me, so I was not sure. Thank you.

  17. This is the error I get after I installed site monitor

     

    Warning: opendir(/home/username/public_html/) [function.opendir]: failed to open dir: No such file or directory in C:\xampp\htdocs\catalog\yogaflow\includes\functions\sitemonitor_functions.php on line 419

     

    Any help appreciated.

    Gary

     

    Gary, assuming you are talking about the version of Sitemonitor created by Jack_mcs, there is a forum topic dedicated to SiteMonitor help here. Jack would be happy to help you there.

    Good luck

  18. Question on alerts, I had two alerts yesterday as follows:

     

    REQUEST.BCSI-ACP

    COOKIE.BCSI-ACP

     

    Both for the same URL

     

    I googled this and went to a post at the PHPIDs site, but the discussion was too technical for me to understand exactly what PHPIDS was flagging out. One poster said to another that type of alert was could be ignored.

     

    Can you tell me why those actions were being flagged out by PHPIDS? The impact level was 7.

     

    Thanks

  19. My guess is that it has to do with permissions or some other server setting that is preventing the script from working correctly. If both hosts use a php.ini file, try comparing the two to see what differences there might be.

     

    Well that led me into another digital adventure, not having dealt with php.ini files before. I did some googling, got the gist of what's going on in the php.ini files, but really to no avail due to my lack of background in this arena.

    Server A provides full access to the php.ini file; a fairly large file it is.

    Server B has what they call a "master" php.ini file, which is much more limited in scope apparently, but the tech guy said I could overwrite and add to those directives with my own strategically placed file.

    Anyway.....a quick comparison of the files showed me that the settings in the smaller file were matched by what was in the larger file. Of course the larger file has a lot more directives, maybe its one of those directives in there that's causing the glitch?

     

    This really isn't much help in figuring why one server allowed the update, the other not but that's what I came up with.

  20. Jack, here's an update on my attempt to update my SiteMonitor.

     

    I have two shops, I just moved one of them to a different host. On that new host, updating from 2.4 to 2.6 was a snap. Absolutely no problem.

    So to test, I tried again to update from 2.4 on the previous host and the same error, unknown user, occurs.

     

    Given my limited background with the technical side of what's going on with web hosts, here's my preliminary observations.

     

    There's something in the web host that effects the upgrade of SiteMonitor. Some host setting/configuration or whatever.

     

    One observable to me is that the start directory on the host that won't allow me to upgrade is much longer than that on my new host.

     

    Problem host start directory: /home/users/web/a1232/myuserid/public_html/

     

    New host start directory: /home/myuserid/public_html/

     

    Anyway, I thought I'd toss this out there in case it helps anyone.

     

    Thanks

  21. Thank you for the reply! Please excuse my ignorance but would you please give me a few detailed steps. I'm new to using oscommerce & what I know so far has been self taught. Thank you for your patience!

     

    Pretty much self taught here, with a lot of help from the expert professionals here on osC. You'll need a fundamental understanding of where the php files reside and how to correctly modify them. Incorrectly modify them and you'll likely break the store somehow. So be careful and backup your files, always.

     

    Locate this file: /includes/languages/english/checkout_payment.php

     

    That's the one I modified.

     

    I FTPed it from my site to my locale computer, made a backup, then modified it, then uploaded it back to my store.

     

    What I modified was this part:

     

    define('TEXT_SELECT_PAYMENT_METHOD'

     

    Find that line, and compare what I have:

     

    define('TEXT_SELECT_PAYMENT_METHOD', '<p> </p>
    <!-- PayPal Logo -->
    <p>
    <table style="TEXT-ALIGN: left" border="0" cellspacing="0" cellpadding="10">
    <tbody>
    <tr>
    <td align="center">
    Please select the preferred payment method to use on this order.<br>Personal checks are not accepted.
    </td></tr>
    <tr><td align="center">To pay by check or debit card at the PayPal site, chose the PAY BY CREDIT CARD option located on the PayPal page.</td></tr>
    <tr><td align="center"><a><img src="/images/PayPalLogo.jpg" border="0"/></a></td></tr>
    </tbody>
    </table>
    </p>
    <p><!-- PayPal Logo --></p>
    <p> </p>');

     

    vs what you have.

     

    Assuming you have uploaded your CC image to the /images folder, you now need to do some basic html work to get the site to say what you want, and show the image you want.

     

    But you have to follow the php syntax exactly, parenthesis, periods, semicolons all have a purpose. It's very exacting.

     

    I understand the being new part. I still am. What I had to do what buckle down, get a good fundamental idea of the osC file structure is laid out, how to correctly modify the files and how to do some basic html. Take time to learn/study, it will definitely pay off. I have a long way to go, still learning. I spent several hours today researching how to do a nice java type image popup for my sites. I finally have it now...I think I do. So now my images will be looking a lot better when popped up.

     

    There are threads here on osC that will help with understanding osC. Here's one.

     

    Also, use this query in google to look stuff up:

    site:http://www.oscommerce.com/forums "whatever you want to find"

     

    Good luck

  22. How do I add the logos of the credit cards I accept for payment and where should I add these?

     

    I added the logo to the check out payment page: 'http://www.myshop.com/checkout_payment.php'

     

    I did that by modifying this file:

     

    /includes/languages/english/checkout_payment.php

     

    the appropriate define this way :

     

    define('TEXT_SELECT_PAYMENT_METHOD', '<p> </p>
    <!-- PayPal Logo -->
    <p>
    <table style="TEXT-ALIGN: left" border="0" cellspacing="0" cellpadding="10">
    <tbody>
    <tr>
    <td align="center">
    Please select the preferred payment method to use on this order.<br>Personal checks are not accepted.
    </td></tr>
    <tr><td align="center">To pay by check or debit card at the PayPal site, chose the PAY BY CREDIT CARD option located on the PayPal page.</td></tr>
    <tr><td align="center"><a><img src="/images/PayPalLogo.jpg" border="0"/></a></td></tr>
    </tbody>
    </table>
    </p>
    <p><!-- PayPal Logo --></p>

     

    with PayPalLogo.jpg being stored in the /images/ folder.

     

    Which reminds me, I need to put that logo on my index page...thanks for the reminder. :)

  23. Thanks! I just tried to create a dummy PP account but of course I can't pay from that dummy account since it wants to verify a real bank account before sending $. I guess I'll just have to trust that I set everything up correctly. A shame there is no way to test via PP w/o using their kludgy "sandbox".

     

    I wasn't clear on my dummy account. Sorry about that.

     

    That dummy account is in my osC store.

     

    I created an account there, with a real email address, etc. that I use now and then to go through a purchase to make sure all is working after I change the shop somehow.

     

    For example, if there's some add on that may effect the checkout process, I would want to do a test run purchase.

     

    Let's say I modified the shippping.php file for some reason. By going through a test run, using my osC dummy account I can make sure all the code is functioning properly.

     

    I take each test run all the way to choosing my payment method <PayPal> right to the PayPal page where the payment is made. If I get there, that pretty much confirms all is OK.

     

    Once verified I go back and clear my shopping cart and that's that.

     

    Of course the best confirmation of all is when a real customer makes a purchase using PayPal and everything works. :thumbsup:

  24. Thanks so much for the reply! The tutorial I was referring to was http://www.oscommerce.info/confluence/display/OSCDOC22/PayPal however I found your link thread soon after posting and configured just like the settings you just posted (thank you!). There does seem to some confusion re: what url to use in PayPal for the "return url" file. I set mine to checkout_process.php which is the same url file for the notification url file. Hopefully that is correct. My only problem now is to test. I had been using "sandbox", however I want to test "live" before I make my shop live. Can this be done? Thanks again for the reply!

     

    It's been a while since I did all the PP configuration, but yes, I do recall the issue about what return url to use. I finally settled on checkout_success.php. I never worked with the sandbox much, I was messing around with getting the store set up and had PP standard live and forgot about it. About a week later, I made a sale, the customer used PayPal, so I decided to go with it as is. Since then, other than occasional glitch, it's been fine.

     

    I test my site out occasionally by using a dummy account. I run through a purchase using the money order method and the PayPal method. For PayPal, once I get to the PayPal payment page, I am fairly satisfied all is well.

     

    Good luck then on all that.

×
×
  • Create New...