Jump to content
Latest News: (loading..)

Rwe

Members
  • Content count

    36
  • Joined

  • Last visited

2 Followers

Profile Information

  • Real Name
    Reinder
  • Gender
    Male
  • Location
    Netherlands

Recent Profile Visitors

786 profile views
  1. I noticed that the header navbar has changed too. More options for background and screensize Categoriebox can set level of subcategories to show, inside the code, nice. A few of my addon modules need to be updated for bs4 Needs some work but until now not difficult to do. its fast and adapts better to smaller screensizes ig tablet size. Thanks @burt
  2. Rwe

    Fake accounts

    These seem to be forum spammers, they sign up and later they will try to spam their sh*t on your forms using the signup details. if i look in my error.log i can see that they also try to visit contact_us.php and www.forum.mysite.nl even if it does not exist. i block them by honeypot system, its working .
  3. Rwe

    Forum Software Update (31st July 2018)

    Soon means another 4 years?
  4. Rwe

    Fake accounts

    The registration is commonly made by robots who look at the right form fields. firstname, lastname , email etcetera. I had this problem too the last weeks of fake accounts exactly as mentiont earlyer. I did the following to trick them; 1 in create_account.php duplicate the firstname input field (just plain html input field can too)and place it before the original firstname field and add a class to the div and and hide it (css display:none ! not use a style="") 2 rename the original firstname field with a newname ( name ="newfirstname") + change : $firstname = tep_db_prepare_input($_POST[newfirstname']); 3 make a rule to give an error when the formfield fistname is being filled up by the robot and place it in the top somewhere between the other fom check codes: if(!empty($_POST['firstname'])) { $error = true; } Finished. i can see in the server logs that the robot has been trying but could not make an account. for now this is working for me. i hope i could help with this .
  5. Ok just when i found out how to enable that in .htaccess and php 7.2 without getting server errors Better not to enable it then.
  6. Hi, Yes you are right, session.gc_probability is set to 0 But i am on a shared server with no access to the php.ini Can session.gc_probability = 1 be set in .htaccess too?
  7. I have the issue that the sessions in the sessions table are not being cleared so it gets larger and larger . Now it is the largest table in my DB. I already manual cleared the table before but this is not the way is should be. How can i fix it to make the expired sessions automaticly being cleared in includes/functions/sessions.php ? installed version: osCommerce Online Merchant v2.3.4.1 CE Frozen PHP 7.2 session.gc_maxlifetime 1440
  8. Rwe

    SQL injection?

    Just a normal url on my live site , nothing that you often look at 😜
  9. Rwe

    SQL injection?

    This week i started to notice this in my error logs: Fri Aug 24 17:27:50.185002 2018] [proxy_fcgi:error] [pid 87397:tid 139653059434240] [client xxx] Premature end of script headers: index.php [Fri Aug 24 17:27:50.192088 2018] [proxy_fcgi:error] [pid 87397:tid 139653059434240] [client xxx ] AH01070: Error parsing script headers above 30 times the same in a row access.log: xxx-c-211.html?osCsid=prvpp15vi15v0vrkm88rele6qc&view=all%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%5C%27A%3D0 HTTP/1.0" 301 1010 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; pt-PT; rv:1.9.1.2) Gecko/20090729 Firefox/3.5.2 (.NET CLR 3.5.30729)" This is only one entry from maybe hundred after eachoter, all with the "view=all" parameter in it and they get longer by each line. i blocked already several ip's but they keep comming, what are they trying ...anyone ?
  10. Rwe

    SEO URLs in OS 2.3.3.4?

    @MrPhil There is no concern about duplicate content if google will find both the old sef and stock URL's with QSA?
  11. I checked your site with an android phone and yes i see your priblem switching from panorama to portrait view. Checking the frozen demo site and my site based on frozen the problem does not occur. Maybe a addon that u installed with css is conflicting with Osc bootstrap media queries?
  12. Rwe

    SEO URLs in OS 2.3.3.4?

    @altoid this is what i have: RewriteRule ^(.*)-p-([0-9]+).html$ product_info.php?products_id=$2 [L,R=301] RewriteRule ^(.*)-c-([0-9_]+).html$ index.php?cPath=$2 [L,R=301] RewriteRule ^(.*)-m-([0-9]+).html$ index.php?manufacturers_id=$2 [L,R=301] Notice the R=301 at the end , it will redirect to the new url and tell google that the old url is permanent replaced with the new one.
  13. Rwe

    Dynamic thumbnails

    @wHiTeHaT Ok thanks, It still does if an image is missing: Warning: finfo_file(images/dvd/speed.gif): failed to open stream: No such file or directory in xxx.. Warning: getimagesize(images/dvd/speed.gif): failed to open stream: No such file or directory in xxx.. i changed if ($filename === null || empty($filename) || (substr($filename, 0, 7) !== 'data://' && !is_file($filename))) { $this->error[] = 'File does not exist'; } to if ($filename === null || empty($filename) || (substr($filename, 0, 7) !== 'data://' && !is_file($filename))) { $this->error[] = 'File does not exist'; $filename = 'images/no-image.png'; } Its working now with a no-image.png but maybe there is a better way of fixing this.
  14. Rwe

    Dynamic thumbnails

    Cool thumbnailscript, but it will throw many errors if the source image, for whatever reason, does not exist. Do you have a fix for that?
  15. Rwe

    SEO URLs in OS 2.3.3.4?

    Sorry must be: RewriteRule ^(.*)-p-([0-9]+).html$ product_info.php?products_id=$2 [L,R=301]
×