Guest Posted December 1, 2009 Share Posted December 1, 2009 https://www.mydomain.com/index.php?notify[]=3010&action=notify Durring Checkout my customers are getting this error and I am loosing sales Your IP address has been logged -- Your IP is: 68.204.244.218 You shouldn't be here, so go away! I'm sorry I'm not even sure were to start. Thanks in advance for any help Quote Link to comment Share on other sites More sharing options...
spooks Posted December 1, 2009 Share Posted December 1, 2009 I suspect you have installed ip trap & have errors with that. Quote Sam Remember, What you think I ment may not be what I thought I ment when I said it. Contributions: Auto Backup your Database, Easy way Multi Images with Fancy Pop-ups, Easy way Products in columns with multi buy etc etc Disable any Category or Product, Easy way Secure & Improve your account pages et al. Link to comment Share on other sites More sharing options...
Guest Posted December 2, 2009 Share Posted December 2, 2009 I suspect you have installed ip trap & have errors with that. Do you think the could be it SAM as I cant seem to find that info anywere http://www.oscommerce.com/forums/topic/327992-please-help-me-find-out-where-four-characters-originates-from/ Quote Link to comment Share on other sites More sharing options...
Guest Posted December 21, 2009 Share Posted December 21, 2009 Anyone have any Ideas I'M loosing business I dont normaly post my domain but if you go to http://www.comtekcomputers.com and search for router then try and add it to the cart you will get this error every time I dont even know were to start to look Quote Link to comment Share on other sites More sharing options...
Guest Posted December 21, 2009 Share Posted December 21, 2009 Hi Marvin, I just went through a test order on your site and DID NOT find anything unusual about the transaction. I placed an order for :Notebook Case Empire 17in, chose to create an account, chose to pay with money order and found no problems at all. HOWEVER, You should read the thread on how to secure your site. http://www.oscommerce.com/forums/topic/313323-how-to-secure-your-site/page__st__260__p__1467163__hl__security%20spooks__fromsearch__1entry1467163 The layout and design of the site is good, the security is POOR. Chris Quote Link to comment Share on other sites More sharing options...
Guest Posted December 21, 2009 Share Posted December 21, 2009 Anyone have any Ideas I'M loosing business I dont normaly post my domain but if you go to http://www.comtekcomputers.com and search for router then try and add it to the cart you will get this error every time I dont even know were to start to look Try some proper tests and report back. I do not get the error when I do as you say. Quote Link to comment Share on other sites More sharing options...
Guest Posted December 22, 2009 Share Posted December 22, 2009 I made this change and my ( Your IP has Been Logged ) Message went away but did I remove the security by doing this ? find RewriteCond %{QUERY_STRING} (;|'|"|%22).*(union|select|insert|drop|update|md5|benchmark|or|and|if).* [NC] im no expert in this but did ask on expert exchange what was causing the problem and above is what they recommended and replace with RewriteCond %{QUERY_STRING} (;|'|"|%22).*(union|select|insert|drop|update|md5|benchmark).* [NC] file uploaded says the same thing here is the post http://addons.oscommerce.com/info/6044 Quote Link to comment Share on other sites More sharing options...
Guest Posted December 22, 2009 Share Posted December 22, 2009 Try some proper tests and report back. I do not get the error when I do as you say. I'm sorry I was up all night last night trying to find out what was causing it and when I changed it the error went away it was 100% because I remoted into several different computers that I remotely manage with completely different ISP's and IP's I got the same error but after changing the code below it went away. And I was to exhausted. to come post my findings before you checked. Sorry:( find RewriteCond %{QUERY_STRING} (;|'|"|%22).*(union|select|insert|drop|update|md5|benchmark|or|and|if).* [NC] im no expert in this but did ask on expert exchange what was causing the problem and above is what they recommended and replace with RewriteCond %{QUERY_STRING} (;|'|"|%22).*(union|select|insert|drop|update|md5|benchmark).* [NC] Quote Link to comment Share on other sites More sharing options...
Guest Posted December 22, 2009 Share Posted December 22, 2009 I suspect you have installed ip trap & have errors with that. Is it Necessary to rename the admin folder if you have it password protected via Cpanel ? Quote Link to comment Share on other sites More sharing options...
Guest Posted December 22, 2009 Share Posted December 22, 2009 Is it Necessary to rename the admin folder if you have it password protected via Cpanel ? If you do not rename the folder and make the necessary changes in the admin configure.php file, you will get hacked for sure. Quote Link to comment Share on other sites More sharing options...
Guest Posted December 22, 2009 Share Posted December 22, 2009 Done thank you everything seems to still be working as well :) Coopco Do you think the change I maid to the httacsess file disables the security ? Quote Link to comment Share on other sites More sharing options...
Guest Posted December 22, 2009 Share Posted December 22, 2009 Done thank you everything seems to still be working as well :) Coopco Do you think the change I maid to the httacsess file disables the security ? I have no idea, no expertise about htaccess. Any additional level of security that does not kill your site is good. There are a few addons that address htaccess. BTW, I have had 4 hack attempts since my last post here. They were trying to access the admin directory and are now banned. Quote Link to comment Share on other sites More sharing options...
Guest Posted December 22, 2009 Share Posted December 22, 2009 Hey now that I know were the log is I see that their are a bunch of IP's band and some are recent so I'm Pretty sure my htaccess. is up to par I also Implemented almost all the the ones that that forum recommended and even found I had some of them already installed they were just turned off because I did not know any better. But Thanks to woulderful People like your self that are willing to help I'm feeling much better now. Have a Merry Christmas !!! Thanks Marvin Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.