Latest News: (loading..)
Search the Community
Showing results for tags 'security'.
Found 4 results
Do you have a Symantec (or one of it's sub-brands) secure certificate on your site? Includes: Thawte VeriSign Equifax GeoTrust RapidSSL Many do. It has been announced that the Chrome browser will no longer trust these secure certificates from Symantec's infrastructure if issued before December 2017, due to flaws in their certificate issuance structure. From Chrome 62, to be released in late October 2017, there will be a warning in the development tools console if your certificate is affected. From Chrome 66, Chrome will completely distrust Symantec certificates issued before June 1, 2016. From December 1 2017 Symantec will be using Digicert's infrastructure to issue certificates and from Chrome 70 (October 2018) all trust will be removed for certificates issued prior to that. All this goes back years when Symantec issued dodgy certificates. If you have a Symantec issued certificate, make sure you have it reissued and reinstalled as soon as possible after December 1 2017. Full details here
PKdev posted a topic in PayPalHello, wanting to install the module "Paypal App" link http://addons.oscommerce.com/info/9184 when copying the file into the shop, I discovered that there's 6 folders and 1 file named : "admin". These are the directories: : d1: paypal app-4_039/catalog/admin/ d2: paypal app-4_039/catalog/includes/hooks/admin/ d3: paypal app-4_039/catalog/includes/apps/paypal/admin/ d4: paypal app-4_039/catalog/includes/apps/paypal/hooks/admin/ d5: paypal app-4_039/catalog/includes/apps/paypal/languages/English/admin/ d6: paypal app-4_039/catalog/includes/apps/paypal/languages/English/hooks/admin/ and this file: f1: paypal app-4_039/catalog/includes/apps/paypal/languages/English/admin.php - For the first file d1, no problem, I'll just copy its contents into the admin folder of my shop (I've already renamed). - For folders until d6 d2 and f1 file: That's my question. It must rename or not? (For security measures). Thank you in advance for your help.
osC OpenSSL Encryption with jCryption - Support thread - Without a SSL certificate the data posted on your shop might be visible to third parties, e.g. your admin username and password. With this Add-On all form data will be encrypted using OpenSSL before it's posted to the server and then decrypted on your server, greatly enhancing the security for you and your customers. How does this work client requests RSA public key from server client encrypts a randomly generated key with the RSA public key server decrypts key with the RSA private key and stores it in the session server encrypts the decrypted key with AES and sends it back to the client client decrypts it with AES, if the key matches the client is in sync with the server and is ready to go everything else is encrypted using AES Source: http://www.jcryption.org/#howitworks Features for this Revision: Support for and tested on osCommerce 2.3.4 Should work for most osCommerce versions with minimum modification. Tested successfully on Google Chrome, Firefox and IE Encrypts all Form Data with OpenSSL Works on both catalog and admin side of shop Uses jCryption library. Screenshots included in package. Download Add-On here: http://addons.oscommerce.com/info/9333
MySQLi Prepared Statement Automator This Add-On comes with the only guarantee of possibly causing you a lot of headaches. It looks like it's working quite well, but further testing is required ... - Support Thread - http://addons.oscommerce.com/info/9076