Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

mhsuffolk

Members
  • Posts

    480
  • Joined

  • Last visited

  • Days Won

    2

Posts posted by mhsuffolk

  1. Ah. All OK now

    I did not run it as I had many pages in the database from my previous Frozen store and thought I might lose them. I can now see that your script does not do this, just updates the configuration table if there are existing pages in the database. Perhaps a note in the instructions for people such as me who are converting an old database to Phoenix to emphasise this point.

  2. Phoenix 1.0.4.3  PHP 7.3

    Admin seems OK

    Shop side I get this when accessing pages that I have created.

    Warning: Use of undefined constant INFORMATION_PAGES_SEO_XREF_ENABLE - assumed 'INFORMATION_PAGES_SEO_XREF_ENABLE' (this will throw an Error in a future version of PHP) in D:\*****\htdocs\includes\hooks\shop\siteWide\information_pages_xref.php on line 21

  3. @asro2004

    Module works perfectly, thank you for your endeavours again.

    I notice that the Stripe website talks about Apple Pay, Google Pay and Samsung Pay. Are these options available in the existing addon? If not is this possible? Stripe talk about APIs for these but it is all above my pay grade.

  4. On 11/15/2019 at 7:01 PM, mhsuffolk said:

    Using v1.8
    In my Phoenix test shop, Frozen live shop and Frozen back up test site I am getting the following behaviour.

    1. Install module and all basic settings including pages create account, contact us and tell a friend appear in admin
    2. Edit module to alter various settings e.g.check account, disallow letters and numbers etc
    3. Save module. The settings have been retained but the list of enabled pages is empty.
    4. Checked in the database and the relevant field is empty.
    5. Uninstall module
    6. Reinstall module and the pages reappear.
    7. Edit module, save it and the pages have gone again.

    I have worked round it by adding the pages manually in the relevant field in phpmyadmin

    Still getting this problem.

    I also have the issue that the maths captcha stops everybody, even legit sign ups, getting through create account. Switch it off and all is well.

  5. Still getting these, followed by Password reset and then a contact us attempt which is being stopped by Honeypot.

    image.png.8982fb4d0c3862a3b8ba972e2cc56bbd.png

    They must have Java off as I have hard coded the create_account code to display UK as default hence Afghanistan appearing.

    Suggestion, as Afghanistan is 1 could we create a country named "Select Country" and number it 0 using a SQL query.

    You would then replace in create_account.php

            echo tep_get_country_list(NULL, 'required aria-required="true" aria-describedby="atCountry" id="inputCountry"');

    With

            echo tep_get_country_list('country','0', NULL, 'required aria-required="true" aria-describedby="atCountry" id="inputCountry"');

     

    Then get Honeypot to look for country 0 and then snag it?

    Just a thought as this is a recurring pattern that could be exploited by Honeypot

  6. Using v1.8
    In my Phoenix test shop, Frozen live shop and Frozen back up test site I am getting the following behaviour.

    1. Install module and all basic settings including pages create account, contact us and tell a friend appear in admin
    2. Edit module to alter various settings e.g.check account, disallow letters and numbers etc
    3. Save module. The settings have been retained but the list of enabled pages is empty.
    4. Checked in the database and the relevant field is empty.
    5. Uninstall module
    6. Reinstall module and the pages reappear.
    7. Edit module, save it and the pages have gone again.

    I have worked round it by adding the pages manually in the relevant field in phpmyadmin

     

  7. I am using the latest Honey pot on Frozen. I am now getting many fake accounts purportedly from Afghanistan which are following a set pattern of operations.

    1. The account is created by populating every field in create account with a string of random letters and presumably their email address.

    2. They log off and then go through the password reset procedure.

    3. They then use the contact us page to send another random string of letters.

    4. Often, but not always I then get a Mail delivery failed message from my host which is the password reset email bouncing back. The action recorder shows two entries for the reset, one with a tick and one with a cross just 1 second apart, then the contact us, which is either from the account just created or 0 in the brackets if the email bounced.

    image.png.e8f9421c4b25fe1e21f72b4d2b8f0c8b.png

     

    Just a suggestion. Would it be possible use this behaviour to get Honeypot to look for this password resetting immediately after account creation and either blocking the IP or alerting the store owner?

  8. 14 minutes ago, Smoky Barnable said:

    I notice if the confirm order button is submitted with an invalid card number, a row is written to the orders table in the database with Preparing [Stripe SCA] status. Is this intended?

    Yes, that is the correct behaviour. A payment intent on the Stripe website has to be created first before the card input field can be displayed. An OSC order creation is the first part of this process. I leave any of these in place for 7 days as the customer can still return and complete the order correctly without having to create a new/second order. If it has not been completed by then, simply delete the order in admin.

    The PayPal app behaves in a similar way.

  9. Hi Jack

    Thank you for you great add ons.

    I get this in the server log when accessing the configure page. (In my Phoenix test shop PHP 7.3)

    PHP Warning:  Use of undefined constant BOX_WIDTH - assumed 'BOX_WIDTH' (this will throw an Error in a future version of PHP) in D:\\Phoenix_7_3\\htdocs\\**********\\sitemonitor_configure_setup.php on line 404, referer: http://localhost/*********/sitemonitor_admin.php

     

×
×
  • Create New...