Jump to content
LTCMLLC

[contribution] Visual Verify Code (VVC) security

Recommended Posts

Was hoping that there would be an answer to this.

 

Perhaps I should put my one of daughters photo in my profile.

 

lol, they'd surely appreciate that as a contribution to the 15 minutes.

 

Thanks for the comment about my site, is your underwear site the test site or the real one? Some of the pics look pretty fuzzy!

 

What contribution did you use for the gift vouchers? I need some of those.

Cheers

Sol

Share this post


Link to post
Share on other sites
lol, they'd surely appreciate that as a contribution to the 15 minutes.

 

Thanks for the comment about my site, is your underwear site the test site or the real one? Some of the pics look pretty fuzzy!

 

What contribution did you use for the gift vouchers? I need some of those.

Cheers

Sol

The underwear site is my real, my test site is currently on my pc. The pics have never been good, one of the suppliers (my original manufacturer) do not have them and I can't afford a photograher and models. It is a pity because the product is really excellent. Maybe the new range will be better.

 

The CCGV contribution, real cow to install, but great once it is working.


The Coopco Underwear Shop

 

If you live to be 100 years of age, that means you have lived for 36,525 days. Don't waste another, there aren't many left.

Share this post


Link to post
Share on other sites
Hi, I had the same problem, but when I checked the logic in the "if (tep_validate_email($email_address)) {" I found that as long as the e-mal address was ok the form was sent before the security cod was checked. So I moved the e-mail function and the redirect. Here is the hole "if (isset($HTTP_GET_VARS['action']) && ($HTTP_GET_VARS['action'] == 'send')) {" statement:

 

if (isset($HTTP_GET_VARS['action']) && ($HTTP_GET_VARS['action'] == 'send')) {
   $name = tep_db_prepare_input($HTTP_POST_VARS['name']);
   $email_address = tep_db_prepare_input($HTTP_POST_VARS['email']);
   $enquiry = tep_db_prepare_input($HTTP_POST_VARS['enquiry']);

   if (tep_validate_email($email_address)) {

   } else {
     $error = true;	  
     $messageStack->add('contact', ENTRY_EMAIL_ADDRESS_CHECK_ERROR);
   }
//VISUAL VERIFY CODE start
 require(DIR_WS_FUNCTIONS . 'visual_verify_code.php');

   $code_query = tep_db_query("select code from visual_verify_code where oscsid = '" . tep_session_id($HTTP_GET_VARS[tep_session_name()]) . "'");
   $code_array = tep_db_fetch_array($code_query);
   $code = $code_array['code'];

   tep_db_query("DELETE FROM " . TABLE_VISUAL_VERIFY_CODE . " WHERE oscsid='" . $vvcode_oscsid . "'"); //remove the visual verify code associated with this session to clean database and ensure new results

   $user_entered_code = $HTTP_POST_VARS['visual_verify_code'];
   if (!(strcasecmp($user_entered_code, $code) == 0)) {    //make the check case insensitive
       $error = true;
       $messageStack->add('contact', VISUAL_VERIFY_CODE_ENTRY_ERROR);
   }
//VISUAL VERIFY CODE stop

if (!$error){
	tep_mail(STORE_OWNER, STORE_OWNER_EMAIL_ADDRESS, EMAIL_SUBJECT, $enquiry, $name, $email_address);
	tep_redirect(tep_href_link(FILENAME_CONTACT_US, 'action=success'));
 	}
 }

 

I hope this is the solution fore you to!

Regards

Ivan

Thank you for taking the time to respond and share your solution. Unfortunately, I could not get your fix to work for me.

 

I think I will just use the contact us page from the contribution and be done with it.


The Coopco Underwear Shop

 

If you live to be 100 years of age, that means you have lived for 36,525 days. Don't waste another, there aren't many left.

Share this post


Link to post
Share on other sites
Thank you for taking the time to respond and share your solution. Unfortunately, I could not get your fix to work for me.

 

I think I will just use the contact us page from the contribution and be done with it.

 

Hey don't give up dude.... you're my only hope lol.

 

Is there no one else that has got this to work? Maybe it is time to look at a different solution.

 

RE your photos: if you have the product, why don't you just shoot them yourself? That's what I do. Just use a clean opposing colour background and lay the stuff out. It doesn't have to be on a model. Or what about a manaquin from eBay etc...

 

You'd be amazed what a good photo will do for your sales....

 

which brings me to the next point..... do you use Ultra Pics and QT pro by any chance? I'm having a pig of a time trying to get them to play together in the products_info.php file.

 

Cheers

Sol

Share this post


Link to post
Share on other sites
Hey don't give up dude.... you're my only hope lol.

 

Is there no one else that has got this to work? Maybe it is time to look at a different solution.

 

RE your photos: if you have the product, why don't you just shoot them yourself? That's what I do. Just use a clean opposing colour background and lay the stuff out. It doesn't have to be on a model. Or what about a manaquin from eBay etc...

 

You'd be amazed what a good photo will do for your sales....

 

which brings me to the next point..... do you use Ultra Pics and QT pro by any chance? I'm having a pig of a time trying to get them to play together in the products_info.php file.

 

Cheers

Sol

Well, how do you get the code to check for a zero entry and an incorrect entry at the same time?

 

$user_entered_code = $HTTP_POST_VARS['visual_verify_code'];

if (!(strcasecmp($user_entered_code, $code) == 0)) { //make the check case insensitive

$error = true;

$messageStack->add('contact', VISUAL_VERIFY_CODE_ENTRY_ERROR);

}

 

does not do it. I do have the rest worked out (I hope).


The Coopco Underwear Shop

 

If you live to be 100 years of age, that means you have lived for 36,525 days. Don't waste another, there aren't many left.

Share this post


Link to post
Share on other sites

Thank you for the support. Once again I have been greatly asisted by the community (not). Here is my solution, take it or leave it.

 

<?php

/*

$Id: contact_us.php 1739 2007-12-20 00:52:16Z hpdl $

 

osCommerce, Open Source E-Commerce Solutions

http://www.oscommerce.com

 

Copyright © 2003 osCommerce

 

Released under the GNU General Public License

*/

 

require('includes/application_top.php');

 

require(DIR_WS_LANGUAGES . $language . '/' . FILENAME_CONTACT_US);

 

$error = false;

 

if (isset($HTTP_GET_VARS['action']) && ($HTTP_GET_VARS['action'] == 'send')) {

$name = tep_db_prepare_input($HTTP_POST_VARS['name']);

$email_address = tep_db_prepare_input($HTTP_POST_VARS['email']);

$enquiry = tep_db_prepare_input($HTTP_POST_VARS['enquiry']);

 

// if (tep_validate_email($email_address)) {

// tep_mail(STORE_OWNER, STORE_OWNER_EMAIL_ADDRESS, EMAIL_SUBJECT, $enquiry, $name, $email_address);

 

// tep_redirect(tep_href_link(FILENAME_CONTACT_US, 'action=success'));

// } else {

// $error = true;

 

// $messageStack->add('contact', ENTRY_EMAIL_ADDRESS_CHECK_ERROR);

// }

 

//VISUAL VERIFY CODE start

 

if (tep_validate_email($email_address) == false) {

$error = true;

$messageStack->add('contact', ENTRY_EMAIL_ADDRESS_CHECK_ERROR);

}

 

require(DIR_WS_FUNCTIONS . 'visual_verify_code.php');

 

$code_query = tep_db_query("select code from visual_verify_code where oscsid = '" . $HTTP_GET_VARS['osCsid'] . "'");

$code_array = tep_db_fetch_array($code_query);

$code = $code_array['code'];

 

tep_db_query("DELETE FROM " . TABLE_VISUAL_VERIFY_CODE . " WHERE oscsid='" . $vvcode_oscsid . "'"); //remove the visual verify code associated with this session to clean database and ensure new results

 

$user_entered_code = $HTTP_POST_VARS['visual_verify_code'];

if (!(strcasecmp($user_entered_code, $code) == 0)) { //make the check case insensitive

$error = true;

$messageStack->add('contact', VISUAL_VERIFY_CODE_ENTRY_ERROR);

}

if ($error == false) {

tep_mail(STORE_OWNER, STORE_OWNER_EMAIL_ADDRESS, EMAIL_SUBJECT, $enquiry, $name, $email_address);

tep_redirect(tep_href_link(FILENAME_CONTACT_US, 'action=success'));

 

 

}

//VISUAL VERIFY CODE stop

 

}

 

$breadcrumb->add(NAVBAR_TITLE, tep_href_link(FILENAME_CONTACT_US));

?>

<!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN">

<html <?php echo HTML_PARAMS; ?>>

<head>

<meta http-equiv="Content-Type" content="text/html; charset=<?php echo CHARSET; ?>">

<title><?php echo TITLE; ?></title>

<base href="<?php echo (($request_type == 'SSL') ? HTTPS_SERVER : HTTP_SERVER) . DIR_WS_CATALOG; ?>">

<link rel="stylesheet" type="text/css" href="stylesheet.css">

</head>

<body marginwidth="0" marginheight="0" topmargin="0" bottommargin="0" leftmargin="0" rightmargin="0">

<!-- header //-->

<?php require(DIR_WS_INCLUDES . 'header.php'); ?>

<!-- header_eof //-->

 

<!-- body //-->

<table border="0" width="100%" cellspacing="3" cellpadding="3">

<tr>

<td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2">

<!-- left_navigation //-->

<?php require(DIR_WS_INCLUDES . 'column_left.php'); ?>

<!-- left_navigation_eof //-->

</table></td>

<!-- body_text //-->

<td width="100%" valign="top"><?php echo tep_draw_form('contact_us', tep_href_link(FILENAME_CONTACT_US, 'action=send')); ?><table border="0" width="100%" cellspacing="0" cellpadding="0">

<tr>

<td><table border="0" width="100%" cellspacing="0" cellpadding="0">

<tr>

<td class="pageHeading"><?php echo HEADING_TITLE; ?></td>

<td class="pageHeading" align="right"><?php echo tep_image(DIR_WS_IMAGES . 'table_background_contact_us.gif', HEADING_TITLE, HEADING_IMAGE_WIDTH, HEADING_IMAGE_HEIGHT); ?></td>

</tr>

</table></td>

</tr>

<tr>

<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

</tr>

<?php

if ($messageStack->size('contact') > 0) {

?>

<tr>

<td><?php echo $messageStack->output('contact'); ?></td>

</tr>

<tr>

<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

</tr>

<?php

}

 

if (isset($HTTP_GET_VARS['action']) && ($HTTP_GET_VARS['action'] == 'success')) {

?>

<tr>

<td class="main" align="center"><?php echo tep_image(DIR_WS_IMAGES . 'table_background_man_on_board.gif', HEADING_TITLE, '0', '0', 'align="left"') . TEXT_SUCCESS; ?></td>

</tr>

<tr>

<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

</tr>

<tr>

<td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">

<tr class="infoBoxContents">

<td><table border="0" width="100%" cellspacing="0" cellpadding="2">

<tr>

<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td>

<td align="right"><?php echo '<a href="' . tep_href_link(FILENAME_DEFAULT) . '">' . tep_image_button('button_continue.gif', IMAGE_BUTTON_CONTINUE) . '</a>'; ?></td>

<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td>

</tr>

</table></td>

</tr>

</table></td>

</tr>

<?php

} else {

?>

<tr>

<td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">

<tr class="infoBoxContents">

<td><table border="0" width="100%" cellspacing="0" cellpadding="2">

<tr>

<td class="main"><?php echo ENTRY_NAME; ?></td>

</tr>

<tr>

<td class="main"><?php echo tep_draw_input_field('name'); ?></td>

</tr>

<tr>

<td class="main"><?php echo ENTRY_EMAIL; ?></td>

</tr>

<tr>

<td class="main"><?php echo tep_draw_input_field('email'); ?></td>

</tr>

 

<!-- VISUAL VERIFY CODE-- START-->

<tr>

<td class="main"><?php echo VISUAL_VERIFY_CODE_CATEGORY; ?></td>

</tr>

<tr>

<td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">

<tr class="infoBoxContents">

<td><table border="0" cellspacing="2" cellpadding="2">

 

<tr>

<td class="main"><?php echo VISUAL_VERIFY_CODE_TEXT_INSTRUCTIONS; ?></td>

<td class="main"><?php echo tep_draw_input_field('visual_verify_code'); ?></td>

 

<td class="main">

<?php

//can replace the following loop with $visual_verify_code = substr(str_shuffle (VISUAL_VERIFY_CODE_CHARACTER_POOL), 0, rand(3,6)); if you have PHP 4.3

$visual_verify_code = "";

for ($i = 1; $i <= rand(3,6); $i++){

$visual_verify_code = $visual_verify_code . substr(VISUAL_VERIFY_CODE_CHARACTER_POOL, rand(0, strlen(VISUAL_VERIFY_CODE_CHARACTER_POOL)-1), 1);

}

$vvcode_oscsid = $HTTP_GET_VARS['osCsid'];

tep_db_query("DELETE FROM " . TABLE_VISUAL_VERIFY_CODE . " WHERE oscsid='" . $vvcode_oscsid . "'");

$sql_data_array = array('oscsid' => $vvcode_oscsid, 'code' => $visual_verify_code);

tep_db_perform(TABLE_VISUAL_VERIFY_CODE, $sql_data_array);

$visual_verify_code = "";

echo('<img src="' . FILENAME_VISUAL_VERIFY_CODE_DISPLAY . '?vvc=' . $vvcode_oscsid . '"');

?>

</td>

<td class="main"><?php echo VISUAL_VERIFY_CODE_BOX_IDENTIFIER; ?></td>

</tr>

</table></td>

</tr>

</table></td>

</tr>

<!-- VISUAL VERIFY CODE-- STOP -->

 

<tr>

<td class="main"><?php echo ENTRY_ENQUIRY; ?></td>

</tr>

<tr>

<td><?php echo tep_draw_textarea_field('enquiry', 'soft', 50, 15); ?></td>

</tr>

</table></td>

</tr>

</table></td>

</tr>

<tr>

<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

</tr>

<tr>

<td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">

<tr class="infoBoxContents">

<td><table border="0" width="100%" cellspacing="0" cellpadding="2">

<tr>

<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td>

<td align="right"><?php echo tep_image_submit('button_continue.gif', IMAGE_BUTTON_CONTINUE); ?></td>

<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td>

</tr>

</table></td>

</tr>

</table></td>

</tr>

<?php

}

?>

</table></form></td>

<!-- body_text_eof //-->

<td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2">

<!-- right_navigation //-->

<?php require(DIR_WS_INCLUDES . 'column_right.php'); ?>

<!-- right_navigation_eof //-->

</table></td>

</tr>

</table>

<!-- body_eof //-->

 

<!-- footer //-->

<?php require(DIR_WS_INCLUDES . 'footer.php'); ?>

<!-- footer_eof //-->

<br>

</body>

</html>

<?php require(DIR_WS_INCLUDES . 'application_bottom.php'); ?>


The Coopco Underwear Shop

 

If you live to be 100 years of age, that means you have lived for 36,525 days. Don't waste another, there aren't many left.

Share this post


Link to post
Share on other sites
Thank you for the support. Once again I have been greatly asisted by the community (not). Here is my solution, take it or leave it.

 

Hey cheers mate.... 10 stars for effort! Does it work or is that an insulting question?

Rgds

Sol

Share this post


Link to post
Share on other sites
Hey cheers mate.... 10 stars for effort! Does it work or is that an insulting question?

Rgds

Sol

Works on my test site. Have other mods to put in for the shop.


The Coopco Underwear Shop

 

If you live to be 100 years of age, that means you have lived for 36,525 days. Don't waste another, there aren't many left.

Share this post


Link to post
Share on other sites

Hi would anyone know how to insert a refresh of the VVC on the create-account page? It's nice to give the user the option to refresh the code if they can't read the one on display.

 

Thanks

Sol

Share this post


Link to post
Share on other sites

SOLVED !!!!

 

contact_us.php

 

 

To get your contact_us.php file to correctly check the VVC, try this - it worked for me!

 

 

1)

Install marcinmf's "Better Image" files (18 June 2008) http://addons.oscommerce.com/info/1560

 

 

 

2)

in catalogue > contact_us.php

Find (about line 31):

//VISUAL VERIFY CODE start
require(DIR_WS_FUNCTIONS . 'visual_verify_code.php');

$code_query = tep_db_query("select code from visual_verify_code where oscsid = '" . tep_session_id($HTTP_GET_VARS[tep_session_name()]) . "'");
$code_array = tep_db_fetch_array($code_query);
$code = $code_array['code'];

tep_db_query("DELETE FROM " . TABLE_VISUAL_VERIFY_CODE . " WHERE oscsid='" . $vvcode_oscsid . "'"); //remove the visual verify code associated with this session to clean database and ensure new results

$user_entered_code = $HTTP_POST_VARS['visual_verify_code'];
if (!(strcasecmp($user_entered_code, $code) == 0)) { //make the check case insensitive
$error = true;
$messageStack->add('contact', VISUAL_VERIFY_CODE_ENTRY_ERROR);
}
//VISUAL VERIFY CODE stop

 

and replace with

 

//VISUAL VERIFY CODE start
require(DIR_WS_FUNCTIONS . 'visual_verify_code.php');

$code_query = tep_db_query("select code from visual_verify_code where oscsid = '" . $HTTP_GET_VARS['osCsid'] . "'");
$code_array = tep_db_fetch_array($code_query);
$code = $code_array['code'];

tep_db_query("DELETE FROM " . TABLE_VISUAL_VERIFY_CODE . " WHERE oscsid='" . $vvcode_oscsid . "'"); //remove the visual verify code associated with this session to clean database and ensure new results

$user_entered_code = $HTTP_POST_VARS['visual_verify_code'];
if (!(strcasecmp($user_entered_code, $code) == 0)) { //make the check case insensitive
$error = true;
$messageStack->add('contact', VISUAL_VERIFY_CODE_ENTRY_ERROR);
}
//VISUAL VERIFY CODE stop

 

I hope it works for you too!

Cheers

Sol

Edited by ssnb

Share this post


Link to post
Share on other sites

Hi,

 

I have very strange problem, it is driving me crazy since I am unable to find out what and when might be causing it... :angry:

 

It is hard to explain what is wrong, basically it doesn't work always and for everybody... I'm using Firefox 3 here and I noticed that the image doesn't reload properly when browsing different pages - if I visit tell_a_friend.php, I may see code VFG5K there for example and when I jump to contact_us.php

from there, same image is displayed, ie. VFG5K - so that is definitely problem #1. But when I refresh the page, I may still receive error about the wrong code being entered... no idea why.

 

These are some of the comments that I've received from my visitors:

 

~~~~~~~~~~~~~~~~~~~~~~

i used both internet explorer and firefox, i refreshed and crtl+f5 to force refresh

i use windows xp home oem edition updated and im not sure what the problem is but i literally tried 10+ times

~~~~~~~~~~~~~~~~~~~~~~

I tried using both the security code with Mozilla Firefox version 2.0.0.16, and then Internet Explorer after that failed multiple times. Computer's operating system is Windows Vista...

~~~~~~~~~~~~~~~~~~~~~~

Hi. I'm trying to fill out the contact form for the banner promotion, but your security code doesn't seem to be working. I've tried it on 2 different Macs (Safari and Firefox), using upper and lower case letters.

~~~~~~~~~~~~~~~~~~~~~~

when i enter the security code it tells me its wrong and wont go through.. i have check befor i send and the code is right every time but it wont go through

~~~~~~~~~~~~~~~~~~~~~~

everytime i try to send the info to your site for the free spoon/absinthe bottle it says security code is incorrect, tried several times and the code i entered was entered correctly each time

~~~~~~~~~~~~~~~~~~~~~~

 

I even have the garbage collection fix there, but to no improvement....

 

One of the forms is free bottle promotion.

 

I am sure that there must be someone who could find out what's wrong... or who had the similar problem.


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites
Hi,

 

 

One of the forms is free bottle promotion.

 

I am sure that there must be someone who could find out what's wrong... or who had the similar problem.

worked for me, comments were testing vvc.

Edited by Coopco

The Coopco Underwear Shop

 

If you live to be 100 years of age, that means you have lived for 36,525 days. Don't waste another, there aren't many left.

Share this post


Link to post
Share on other sites

I know, I received your message... it works for me as well but how it could be possible that there are so many people complaining? Just read this:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~

I can't seem to get it to send the email for the banner info so I have taken a screen shot to send to you.

Doesn't matter how the security code is entered, will not go past the send button.

~~~~~~~~~~~~~~~~~~~~~~~~~~~

the security code system for submitting free spoon request does not work please fix

~~~~~~~~~~~~~~~~~~~~~~~~~~~

but when I try to enter the security code to confirm that and to register, it absolutely will not let me enter the code - it keeps saying that I've entered it wrong when I haven't :( This has happened multiple times, I'm thinking perhaps it's a glitch?

~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

As I said, I've absolutely no idea why those errors... I receive 1-3 of those messages per day so there MUST be something wrong, don't you think? Thanx for having a look, appreciate it. Any idea how to force reload for Firefox? In IE I see always new image with the code but not in Firefox (when jumping between contact_us and testimonials).


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites
I know, I received your message... it works for me as well but how it could be possible that there are so many people complaining? Just read this:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~

I can't seem to get it to send the email for the banner info so I have taken a screen shot to send to you.

Doesn't matter how the security code is entered, will not go past the send button.

~~~~~~~~~~~~~~~~~~~~~~~~~~~

the security code system for submitting free spoon request does not work please fix

~~~~~~~~~~~~~~~~~~~~~~~~~~~

but when I try to enter the security code to confirm that and to register, it absolutely will not let me enter the code - it keeps saying that I've entered it wrong when I haven't :( This has happened multiple times, I'm thinking perhaps it's a glitch?

~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

As I said, I've absolutely no idea why those errors... I receive 1-3 of those messages per day so there MUST be something wrong, don't you think? Thanx for having a look, appreciate it. Any idea how to force reload for Firefox? In IE I see always new image with the code but not in Firefox (when jumping between contact_us and testimonials).

Don't know, maybe something odd with browsers or OS. For the record, I am on win2000 and ie6.


The Coopco Underwear Shop

 

If you live to be 100 years of age, that means you have lived for 36,525 days. Don't waste another, there aren't many left.

Share this post


Link to post
Share on other sites

I've bee advised that:

The code could be altered to make the refresh appear smooth and not lose the data on the page. It's not a quick change but it can be done (and really should have been done by the author).

Any idea how to achieve that? It is slightly beyond my coding skills atm. I'm sure that this would further improve this great contribution.


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites

You could try this contrib instead http://addons.oscommerce.com/info/1237


Sam

 

Remember, What you think I ment may not be what I thought I ment when I said it.

 

Contributions:

 

Auto Backup your Database, Easy way

 

Multi Images with Fancy Pop-ups, Easy way

 

Products in columns with multi buy etc etc

 

Disable any Category or Product, Easy way

 

Secure & Improve your account pages et al.

Share this post


Link to post
Share on other sites

I've been thinking about it already but since it would mean uninstalling it from quite a few files such as create_account, testimonials, tell_a_friend and contact_us, I just wanted to take the easier route and tweak the VVC if it could be done. Is there a live shop where it could be seen?


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites

www.livingconsciously.co.uk

 

 

The package includes create_account etc so you could just do a temporary swap, the only other changes needed to work are small additions to catalog/includes/database_tables.php & catalog/includes/filenames.php, upload the account_validation.php function and validation_png.php plus the tt font for best performance

 

Plus apply the sql to create the table used.

Edited by spooks

Sam

 

Remember, What you think I ment may not be what I thought I ment when I said it.

 

Contributions:

 

Auto Backup your Database, Easy way

 

Multi Images with Fancy Pop-ups, Easy way

 

Products in columns with multi buy etc etc

 

Disable any Category or Product, Easy way

 

Secure & Improve your account pages et al.

Share this post


Link to post
Share on other sites

Thanks a lot, but it appears that there might be similar problem with refresh as I (and many others) have with VVC. I've visited that page, went to create_account.php where code QJ8HA was displayed. From there I jumped to browse and after two or three pages I went back to create_account.php and guess what? Same code QJ8HA was displayed there. And if I wanted to create an account, I received message: Incorrect validation code - and same, unreloaded code QJ8HA below. Unless I know that I have to reload the page, I would be stuck there and eventually give up. How many times people would try, what do you think...? Just for the record, I'm using Windows XP with Firefox 3.0.1.

 

We all know that either VVC or Anti Robot Reg stop spam but without a doubt, it also stop few people to contact you or even worse create an account thus make a purchase. I'm positive that it is NOT just me being paranoid here and I wonder why has nobody came across this problem before. I also know that few webmasters managed to sort that problem out, unfortunately they are not in a mood to share that knowledge with others (I've been trying to contact them for a while). :(


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites

I don't think this is such a big problem, it is only with firefox (only 20%ish users use firefox) and only occurs if you use the back button to go back to the create account, again not commonly done for that type of page.

 

Nevertheless I will look at a solution to this minor 'bug'.

 

NB an easier page for testing is password forgotten.


Sam

 

Remember, What you think I ment may not be what I thought I ment when I said it.

 

Contributions:

 

Auto Backup your Database, Easy way

 

Multi Images with Fancy Pop-ups, Easy way

 

Products in columns with multi buy etc etc

 

Disable any Category or Product, Easy way

 

Secure & Improve your account pages et al.

Share this post


Link to post
Share on other sites
Thanks a lot, but it appears that there might be similar problem with refresh as I (and many others) have with VVC. I've visited that page, went to create_account.php where code QJ8HA was displayed. From there I jumped to browse and after two or three pages I went back to create_account.php and guess what? Same code QJ8HA was displayed there. And if I wanted to create an account, I received message: Incorrect validation code - and same, unreloaded code QJ8HA below. Unless I know that I have to reload the page, I would be stuck there and eventually give up. How many times people would try, what do you think...? Just for the record, I'm using Windows XP with Firefox 3.0.1.

 

We all know that either VVC or Anti Robot Reg stop spam but without a doubt, it also stop few people to contact you or even worse create an account thus make a purchase. I'm positive that it is NOT just me being paranoid here and I wonder why has nobody came across this problem before. I also know that few webmasters managed to sort that problem out, unfortunately they are not in a mood to share that knowledge with others (I've been trying to contact them for a while). :(

It must be you. When I hit reload I get a new code.


The Coopco Underwear Shop

 

If you live to be 100 years of age, that means you have lived for 36,525 days. Don't waste another, there aren't many left.

Share this post


Link to post
Share on other sites
It must be you. When I hit reload I get a new code.

 

 

Its firebug, it seems to stop the correct response to no-cache, turn off firebug & the problem is gone.

 

NB When someone finds a problem that they can't solve, why do they automatically think that loads of others have the same!!!

Edited by spooks

Sam

 

Remember, What you think I ment may not be what I thought I ment when I said it.

 

Contributions:

 

Auto Backup your Database, Easy way

 

Multi Images with Fancy Pop-ups, Easy way

 

Products in columns with multi buy etc etc

 

Disable any Category or Product, Easy way

 

Secure & Improve your account pages et al.

Share this post


Link to post
Share on other sites

Ok

 

There are clearly bugs in firefox, the cache problem can dissappear, then come back, though its minor (back button issue)

 

I have found a solution & will upload a new version of Anti Robot Registration Validation with it onboard.


Sam

 

Remember, What you think I ment may not be what I thought I ment when I said it.

 

Contributions:

 

Auto Backup your Database, Easy way

 

Multi Images with Fancy Pop-ups, Easy way

 

Products in columns with multi buy etc etc

 

Disable any Category or Product, Easy way

 

Secure & Improve your account pages et al.

Share this post


Link to post
Share on other sites
I don't think this is such a big problem, it is only with firefox (only 20%ish users use firefox) and only occurs if you use the back button to go back to the create account, again not commonly done for that type of page.

Even if it was 10%, I still care about them and it looks like they hit the back button. Occasionally but they do.

 

It must be you. When I hit reload I get a new code.

Only in Firefox, works well with IE, I think I've mentioned that already in #63.

 

Ok

There are clearly bugs in firefox, the cache problem can dissappear, then come back, though its minor (back button issue)

I have found a solution & will upload a new version of Anti Robot Registration Validation with it onboard.

It would be nice if someone could fix the VVC as well. But thank you for your time anyway.


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites

Unfortunatly looking at the output of vvc it is easily broken by current scripts, so I don`t feel its worth spending the time on, & Anti Robot Registration Validation

install is easy anyway.


Sam

 

Remember, What you think I ment may not be what I thought I ment when I said it.

 

Contributions:

 

Auto Backup your Database, Easy way

 

Multi Images with Fancy Pop-ups, Easy way

 

Products in columns with multi buy etc etc

 

Disable any Category or Product, Easy way

 

Secure & Improve your account pages et al.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×