Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Guest

[contribution] Visual Verify Code (VVC) security

Recommended Posts

Unfortunatly looking at the output of vvc it is easily broken by current scripts, so I don`t feel its worth spending the time on, & Anti Robot Registration Validation

install is easy anyway.

 

 

I've had no issues with VVC and also, I encountered no problems with your contact us form Mr absynth!

 

I'm using firefox 2.2

Share this post


Link to post
Share on other sites
I've had no issues with VVC and also, I encountered no problems with your contact us form Mr absynth!

I'm using firefox 2.2

 

I've noticed that you've submitted a couple of test messages, thank you for taking time to have a look at it. I've visited your site, went to contact us where a code was displayed, lets say emtf. From there I went to Accessories category, browsed few products and clicked on Contact Us (left column) again. And same code - emtf was displayed there. Clicked General FAQs, read them and clicked Contact Us - no use of back button, just browsing the store. It might be similar scenario - a customer went to your store, saw a product, wanted to contact you but just before completing your contact form decided to have a look at your FAQs - perhaps that question might be already answered there. No, it wasn't, went back to Contact Us and lets try to ask the shop owner... oooops error and same, emtf code is displayed even after the error message. Sorry, I've sent you one test message as well.


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites
I've noticed that you've submitted a couple of test messages, thank you for taking time to have a look at it. I've visited your site, went to contact us where a code was displayed, lets say emtf. From there I went to Accessories category, browsed few products and clicked on Contact Us (left column) again. And same code - emtf was displayed there. Clicked General FAQs, read them and clicked Contact Us - no use of back button, just browsing the store. It might be similar scenario - a customer went to your store, saw a product, wanted to contact you but just before completing your contact form decided to have a look at your FAQs - perhaps that question might be already answered there. No, it wasn't, went back to Contact Us and lets try to ask the shop owner... oooops error and same, emtf code is displayed even after the error message. Sorry, I've sent you one test message as well.

 

OK, well, I think I understand what you are saying.... in other words, you are saying it doesn't matter what page you go to, but whenever you come back to the contact us page the same v v c is on display yes? If that is the case, then it your browser settings because when I try that on my site, each time I browse to a different page and then come back to contact us - it is a different v v code. So I can only assume that this is specific to some browser settings.

 

As I say, I don't have this issue myself, and so far, v v c has prevented any spam getting through! When it stops working I will look at it further, but so far so good! I seem to get a lot of genuine questions, so obviously it's not stopping people getting through.

 

However, that being the case, it could be stopping some people who have peculiar cookie settings in the browser. It would probably only need a line or two of code to "kill the browser cookie" for v c c. If you were so inclined (or anyone with the expertise) you could probably find this code somewhere and let us know?

 

I'd be interested to know if anyone else experiences the same issue you have, but so far, I think I'm fairly convinced it's a local issue on your machine. What browser and version do you use?

 

Try your site from a different PC (say at work, or a friend's house) and see if it's the same!

Good luck!

Edited by ssnb

Share this post


Link to post
Share on other sites

Unfortunatly its not a setting issue, its a bug in the latest firefox, it sometimes ignores no-cache, user settings wont effect it. If you search you'lll see its been on-going for a while.

 

NB Firebug adds some extra issues, so turn that off to avoid confusion.


Sam

 

Remember, What you think I ment may not be what I thought I ment when I said it.

 

Contributions:

 

Auto Backup your Database, Easy way

 

Multi Images with Fancy Pop-ups, Easy way

 

Products in columns with multi buy etc etc

 

Disable any Category or Product, Easy way

 

Secure & Improve your account pages et al.

Share this post


Link to post
Share on other sites
I'd be interested to know if anyone else experiences the same issue you have, but so far, I think I'm fairly convinced it's a local issue on your machine. What browser and version do you use?

Unfortunately it looks like there's been quite a few people on our site that have experienced the same issue. I have Windows XP and Firefox 3.0.1 no problems when using IE.

 

Try your site from a different PC (say at work, or a friend's house) and see if it's the same!

Good luck!

Done it already - works fine with IE, as spooks mentioned, it is Firebug but I'm sure it is possible to change/amend VVC coding slightly to enable it to work fine with all browsers (I've seen it on a few web sites already). If I'll find out, I will certainly let you know or update the contribution. If not, I'll switch to Anti Robot Reg. There are few scenarios that may cause your visitors/customers to give up and go elsewhere (unless your site is unique - which is probably not) where all works fine and with no hassle - we all know that.


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites
Unfortunately it looks like there's been quite a few people on our site that have experienced the same issue. I have Windows XP and Firefox 3.0.1 no problems when using IE.

 

Done it already - works fine with IE, as spooks mentioned, it is Firebug but I'm sure it is possible to change/amend VVC coding slightly to enable it to work fine with all browsers

 

So is it Firebug (that's a web developers software, so how many of your customers are likely to have that) or is it Firefox 3.0.1? If the latter, you can report it to Mozilla to see if they can correct this? If the former, I understand you can tell firebug to ignore certain sites (like your store)

 

Interested to hear how you get on, keep us informed!

Share this post


Link to post
Share on other sites

It is Firefox and I'm aware of the fact that the problem is not just in version 3.0.1 but former versions as well.


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites

Just to let everyone know I have uploaded a new version of Visual Verify Code - version 3 - to the contributions page.

 

You can find the contribution page here:

http://addons.oscommerce.com/info/1560

 

Better instructions and a more solid code base - It now works great on contact_us.php, create_account.php and there is instructions for adding to the tell_a_friend file (although I don't use tell a friend so I can't say if this code works as it does in the other files)

 

Looking forward to solving more problems ;-)

Cheers

Sol

Edited by ssnb

Share this post


Link to post
Share on other sites
Hi there,

Sorry to bother, but I really cannot get the vvc - contact_us.php working. I did the fix:

 

//VISUAL VERIFY CODE start

require(DIR_WS_FUNCTIONS . 'visual_verify_code.php');

 

$code_query = tep_db_query("select code from visual_verify_code where oscsid = '" . $HTTP_GET_VARS['osCsid'] . "'");

$code_array = tep_db_fetch_array($code_query);

$code = $code_array['code'];

 

tep_db_query("DELETE FROM " . TABLE_VISUAL_VERIFY_CODE . " WHERE oscsid='" . $vvcode_oscsid . "'"); //remove the visual verify code associated with this session to clean database and ensure new results

 

$user_entered_code = $HTTP_POST_VARS['visual_verify_code'];

if (!(strcasecmp($user_entered_code, $code) == 0)) { //make the check case insensitive

$error = true;

$messageStack->add('contact', VISUAL_VERIFY_CODE_ENTRY_ERROR);

}

//VISUAL VERIFY CODE stop

 

howerer I always get the message:

The security code you entered did not match the one displayed.

 

I also tried to copy the contact_us.php file over my file, but it behaves the same.

 

 

tell a friend and registration is working fine.

 

Can you please help, it really driving me crazy.

 

Thank you

 

 

michal

 

 

Hi Michal

 

 

First of all, did you install version 3?

http://addons.oscommerce.com/info/1560

 

If so, did you update the entire header block - not just the VVC code block?

 

Sol

Edited by ssnb

Share this post


Link to post
Share on other sites
it's working now :Dbiggrin.gif .

I checked through your instructions and changed the code:

VISUAL VERIFY CODE start -->

<tr>

<td class="main"><b><?php echo VISUAL_VERIFY_CODE_CATEGORY; ?></b></td>

</tr>

<tr>

<td class="main">If you are human, please type the security code you see below into the provided box.<br></td>

</tr>

 

<tr>

<td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">

<tr class="infoBoxContents">

<td><table border="0" cellspacing="2" cellpadding="2">

<tr>

<td class="main"><?php echo VISUAL_VERIFY_CODE_TEXT_INSTRUCTIONS; ?></td>

<td class="main"><?php echo tep_draw_input_field('visual_verify_code') . ' ' . '<span class="inputRequirement">' . VISUAL_VERIFY_CODE_ENTRY_TEXT . '</span>'; ?></td>

 

<td class="main">

<?php

//can replace the following loop with $visual_verify_code = substr(str_shuffle (VISUAL_VERIFY_CODE_CHARACTER_POOL), 0, rand(3,6)); if you have PHP 4.3

$visual_verify_code = "";

for ($i = 1; $i <= rand(3,6); $i++){

$visual_verify_code = $visual_verify_code . substr(VISUAL_VERIFY_CODE_CHARACTER_POOL, rand(0, strlen(VISUAL_VERIFY_CODE_CHARACTER_POOL)-1), 1);

}

$vvcode_oscsid = $HTTP_GET_VARS['osCsid'];

tep_db_query("DELETE FROM " . TABLE_VISUAL_VERIFY_CODE . " WHERE oscsid='" . $vvcode_oscsid . "'");

$sql_data_array = array('oscsid' => $vvcode_oscsid, 'code' => $visual_verify_code);

tep_db_perform(TABLE_VISUAL_VERIFY_CODE, $sql_data_array);

$visual_verify_code = "";

echo('<img src="' . FILENAME_VISUAL_VERIFY_CODE_DISPLAY . '?vvc=' . $vvcode_oscsid . '">');

?>

</td>

<td class="main"><?php echo VISUAL_VERIFY_CODE_BOX_IDENTIFIER; ?></td>

</tr>

</table></td>

</tr>

</table></td>

</tr>

<tr>

<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

</tr>

<!--

VISUAL VERIFY CODE stop -->

 

 

and now it's working. I don't understand why it didn't work with the file from your package, bud it certainly works now.

Thank you for updating this contribution.

 

Regards

 

michal

 

 

 

Glad to hear that Michal

Edited by ssnb

Share this post


Link to post
Share on other sites

Hello,

 

i've installed version 3 and replaced the block as exactly is mentioned in the instructions of the package..

i 'm interested only in the contact_us.php so i made all the relevant changed there..

 

The problem is that i don't get an image at all

if i ckeck the properties of the image (right click on it) it says:

 

http://www.mysite.com/vvc_display.php?vvc=

 

checked with IE and FF

 

any ideas please??

 

Thanks a lot!

Share this post


Link to post
Share on other sites
Hello,

 

i've installed version 3 and replaced the block as exactly is mentioned in the instructions of the package..

i 'm interested only in the contact_us.php so i made all the relevant changed there..

 

The problem is that i don't get an image at all

if i ckeck the properties of the image (right click on it) it says:

 

http://www.mysite.com/vvc_display.php?vvc=

 

checked with IE and FF

 

any ideas please??

 

Thanks a lot!

 

 

Hi please can you confirm that you uploaded the FONTS folder (2C below)? The instruction to do this was missing from the instruction file - I will update that shortly.

 

Here is the instructions for Step 2 in the README file:

 

2. Upload the NEW files to your site

Open the folder NEW FILES and upload to your site as described in 2a b and c below

 

NOTE: If you have a fresh install of OSC - just upload the entire catalogue folder contained in the NEW FILES TO ADD folder - (but you probably don't do you - in which case, just follow the instructions below!)

 

 

2a. Add the included file "vvc_display.php" to your "catalogue" folder

e.g. /catalog/vvc_display.php

 

 

2b. Add file "visual_verify_code.php" to your "catalog/includes/functions" folder

e.g. /catalog/includes/functions/visual_verify_code.php)

 

 

2c. Upload the "fonts" folder to your "catalog/includes/ directory

 

If you have already done this and it is still not working, please either paste your code here - or provide a link to your site.

Thanks

Sol

Edited by ssnb

Share this post


Link to post
Share on other sites
Hi please can you confirm that you uploaded the FONTS folder (2C below)? The instruction to do this was missing from the instruction file - I will update that shortly.

 

Here is the instructions for Step 2 in the README file:

 

 

 

If you have already done this and it is still not working, please either paste your code here - or provide a link to your site.

Thanks

Sol

 

i tried several things without any luck..

 

it's a little bit strange cause i did a fresh installation of oscommerce and then copy the "files for new site ONLY" and worked.

 

I noticed that to my site the image is not being displayed either because the " b78621f064a2886012e39153f6fecb03 " is missing so you see only http://www.mysite/vvc_display.php?vvc=

Then i copied the file contact_us.php from the ""files for new site ONLY" to my installation and i could see the whole url i.e. http://www.mysite/vvc_display.php?vvc=b786...2e39153f6fecb03 but i didn't reproduced the image

 

strange things..

i'll check the installation again..

Share this post


Link to post
Share on other sites
i tried several things without any luck..

 

it's a little bit strange cause i did a fresh installation of oscommerce and then copy the "files for new site ONLY" and worked.

 

I noticed that to my site the image is not being displayed either because the " b78621f064a2886012e39153f6fecb03 " is missing so you see only http://www.mysite/vvc_display.php?vvc=

Then i copied the file contact_us.php from the ""files for new site ONLY" to my installation and i could see the whole url i.e. http://www.mysite/vvc_display.php?vvc=b786...2e39153f6fecb03 but i didn't reproduced the image

 

strange things..

i'll check the installation again..

 

 

Hmmm That looks to be an error in the setup.

 

If you visit www.mysite.com/vvc_display.php - you should see only the image and the code should not be displayed.

 

Are you using Search Engine Safe URLS? That needs to be set to false.

Share this post


Link to post
Share on other sites
Hmmm That looks to be an error in the setup.

 

If you visit www.mysite.com/vvc_display.php - you should see only the image and the code should not be displayed.

 

Are you using Search Engine Safe URLS? That needs to be set to false.

 

I 'm not using "Search Engine Safe Urls" .

 

I cleared "visual verify code" and then visited contact_us.php

afterwards i see that i have a new entry on the "visual verify code" table, i used the key it was displayed on table and the message sent successfully.

So, the only problem is that the image is not being displayed??

Share this post


Link to post
Share on other sites

I have a problem with the contact_us.

 

If I leave the security code empty, it sends the contact_us page.

 

If I put in one letter in the security code, it says wrong code.

 

The create_account is working fine.

 

 

<?php
/*
 $Id: contact_us.php,v 1.42 2003/06/12 12:17:07 hpdl Exp $

 osCommerce, Open Source E-Commerce Solutions
 http://www.oscommerce.com

 Copyright (c) 2003 osCommerce

 Modified by William L. Peer, Jr. to accommodate the visual verify code 26SEP03

 Released under the GNU General Public License
*/

 require('includes/application_top.php');

 require(DIR_WS_LANGUAGES . $language . '/' . FILENAME_CONTACT_US);

 $error = false;


if (isset($HTTP_GET_VARS['action']) && ($HTTP_GET_VARS['action'] == 'send')) {
$name = tep_db_prepare_input($HTTP_POST_VARS['name']);
$email_address = tep_db_prepare_input($HTTP_POST_VARS['email']);
$enquiry = tep_db_prepare_input($HTTP_POST_VARS['enquiry']);

if (tep_validate_email($email_address)) {

} else {
$error = true;
$messageStack->add('contact', ENTRY_EMAIL_ADDRESS_CHECK_ERROR);
}
//VISUAL VERIFY CODE start
require(DIR_WS_FUNCTIONS . 'visual_verify_code.php');

$code_query = tep_db_query("select code from visual_verify_code where oscsid = '" . $HTTP_GET_VARS['osCsid'] . "'");
$code_array = tep_db_fetch_array($code_query);
$code = $code_array['code'];

tep_db_query("DELETE FROM " . TABLE_VISUAL_VERIFY_CODE . " WHERE oscsid='" . $vvcode_oscsid . "'"); //remove the visual verify code associated with this session to clean database and ensure new results

$user_entered_code = $HTTP_POST_VARS['visual_verify_code'];
if (!(strcasecmp($user_entered_code, $code) == 0)) { //make the check case insensitive
$error = true;
$messageStack->add('contact', VISUAL_VERIFY_CODE_ENTRY_ERROR);
}
//VISUAL VERIFY CODE stop

if (!$error){
tep_mail(STORE_OWNER, STORE_OWNER_EMAIL_ADDRESS, EMAIL_SUBJECT, $enquiry, $name, $email_address);
tep_redirect(tep_href_link(FILENAME_CONTACT_US, 'action=success'));
}
}


 $breadcrumb->add(NAVBAR_TITLE, tep_href_link(FILENAME_CONTACT_US));
?>
<!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN">
<html <?php echo HTML_PARAMS; ?>>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo CHARSET; ?>">
<title><?php echo TITLE; ?></title>
<base href="<?php echo (($request_type == 'SSL') ? HTTPS_SERVER : HTTP_SERVER) . DIR_WS_CATALOG; ?>">
<link rel="stylesheet" type="text/css" href="stylesheet.css">
</head>
<body marginwidth="0" marginheight="0" topmargin="0" bottommargin="0" leftmargin="0" rightmargin="0">
<!-- header //-->
<?php require(DIR_WS_INCLUDES . 'header.php'); ?>
<!-- header_eof //-->

<!-- body //-->
<table border="0" width="100%" cellspacing="3" cellpadding="3">
 <tr>
<td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2">
<!-- left_navigation //-->
<?php require(DIR_WS_INCLUDES . 'column_left.php'); ?>
<!-- left_navigation_eof //-->
</table></td>
<!-- body_text //-->
<td width="100%" valign="top"><?php echo tep_draw_form('contact_us', tep_href_link(FILENAME_CONTACT_US, 'action=send')); ?><table border="0" width="100%" cellspacing="0" cellpadding="0">
  <tr>
	<td><table border="0" width="100%" cellspacing="0" cellpadding="0">
	  <tr>
		<td class="pageHeading"><?php echo HEADING_TITLE; ?></td>
		<td class="pageHeading" align="right"><?php echo tep_image(DIR_WS_IMAGES . 'table_background_contact_us.gif', HEADING_TITLE, HEADING_IMAGE_WIDTH, HEADING_IMAGE_HEIGHT); ?></td>
	  </tr>
	</table></td>
  </tr>
  <tr>
	<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
  </tr>
<?php
 if ($messageStack->size('contact') > 0) {
?>
  <tr>
	<td><?php echo $messageStack->output('contact'); ?></td>
  </tr>
  <tr>
	<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
  </tr>
<?php
 }

 if (isset($HTTP_GET_VARS['action']) && ($HTTP_GET_VARS['action'] == 'success')) {
?>
  <tr>
	<td class="main" align="center"><?php echo tep_image(DIR_WS_IMAGES . 'table_background_man_on_board.gif', HEADING_TITLE, '0', '0', 'align="left"') . TEXT_SUCCESS; ?></td>
  </tr>
  <tr>
	<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
  </tr>
  <tr>
	<td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
	  <tr class="infoBoxContents">
		<td><table border="0" width="100%" cellspacing="0" cellpadding="2">
		  <tr>
			<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td>
			<td align="right"><?php echo '<a href="' . tep_href_link(FILENAME_DEFAULT) . '">' . tep_image_button('button_continue.gif', IMAGE_BUTTON_CONTINUE) . '</a>'; ?></td>
			<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td>
		  </tr>
		</table></td>
	  </tr>
	</table></td>
  </tr>
<?php
 } else {
?>
  <tr>
	<td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
	  <tr class="infoBoxContents">
		<td><table border="0" width="100%" cellspacing="0" cellpadding="2">
		  <tr>
			<td class="main"><?php echo ENTRY_NAME; ?></td>
		  </tr>
		  <tr>
			<td class="main"><?php echo tep_draw_input_field('name'); ?></td>
		  </tr>
		  <tr>
			<td class="main"><?php echo ENTRY_EMAIL; ?></td>
		  </tr>
		  <tr>
			<td class="main"><?php echo tep_draw_input_field('email'); ?></td>
		  </tr>
<!-- VISUAL VERIFY CODE-- START-->
  <tr>
	<td class="main"><?php echo VISUAL_VERIFY_CODE_CATEGORY; ?></td>
  </tr>
  <tr>
	<td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
	  <tr class="infoBoxContents">
		<td><table border="0" cellspacing="2" cellpadding="2">

		  <tr>
			<td class="main"><?php echo VISUAL_VERIFY_CODE_TEXT_INSTRUCTIONS; ?></td>
			<td class="main"><?php echo tep_draw_input_field('visual_verify_code'); ?></td>

			<td class="main">
			  <?php
			  // ----- begin garbage collection --------
$included_code_query = tep_db_query("SELECT oscsid, code, dt FROM " . TABLE_VISUAL_VERIFY_CODE);
$endtime = time();

while ($included_code = tep_db_fetch_array($included_code_query)) {
 $starttime=mktime(
substr($included_code['dt'], 6, 2),	// hour
substr($included_code['dt'], 8, 2),	// minute
substr($included_code['dt'], 10, 2),// second
substr($included_code['dt'], 2, 2),	// month
substr($included_code['dt'], 4, 2),	// day
substr($included_code['dt'], 0, 2)	// year
 );
 $timediff = intval(($endtime-$starttime)/3600);

 if ($timediff > 5) {	// 5+ hours should be enough to fill in a form
tep_db_query("DELETE FROM " . TABLE_VISUAL_VERIFY_CODE . " WHERE code='" .$included_code['code'] . "' AND dt='" .$included_code['dt'] . "'");
 }  
}
// ----- end garbage collection --------

				  //can replace the following loop with $visual_verify_code = substr(str_shuffle (VISUAL_VERIFY_CODE_CHARACTER_POOL), 0, rand(3,6)); if you have PHP 4.3
				$visual_verify_code = "";
				for ($i = 1; $i <= rand(3,6); $i++){
					  $visual_verify_code = $visual_verify_code . substr(VISUAL_VERIFY_CODE_CHARACTER_POOL, rand(0, strlen(VISUAL_VERIFY_CODE_CHARACTER_POOL)-1), 1);
				 }
				 $vvcode_oscsid = tep_session_id($HTTP_GET_VARS[tep_session_name()]);
				 tep_db_query("DELETE FROM " . TABLE_VISUAL_VERIFY_CODE . " WHERE oscsid='" . $vvcode_oscsid . "'");
				 $sql_data_array = array('oscsid' => $vvcode_oscsid, 'code' => $visual_verify_code);
				 tep_db_perform(TABLE_VISUAL_VERIFY_CODE, $sql_data_array);
				 $visual_verify_code = "";
				 echo('<img src="' . FILENAME_VISUAL_VERIFY_CODE_DISPLAY . '?vvc=' . $vvcode_oscsid . '"');
			  ?>
			</td>
			<td class="main"><?php echo VISUAL_VERIFY_CODE_BOX_IDENTIFIER; ?></td>
		  </tr>
		</table></td>
	  </tr>
	</table></td>
  </tr>
<!-- VISUAL VERIFY CODE-- STOP -->
  <tr>
	<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
  </tr>
		  <tr>
			<td class="main"><?php echo ENTRY_ENQUIRY; ?></td>
		  </tr>
		  <tr>
			<td><?php echo tep_draw_textarea_field('enquiry', 'soft', 50, 15); ?></td>
		  </tr>
		  <tr>
<!--
			<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td> -->
			<td align="middle"><?php echo tep_image_submit('button_continue.gif', IMAGE_BUTTON_SUBMIT); ?></td>
<!--
			<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td> -->

		  </tr>

		</table></td>
	  </tr>
	</table></td>
  </tr>
  <tr>
	<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
  </tr>
  <tr>
	<td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
	  <tr class="infoBoxContents">
		<td><table border="0" width="100%" cellspacing="0" cellpadding="2">
		  <tr>
			 <td class="main"><?php echo STORE_NAME_ADDRESS; ?></td>
			<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td>
		  </tr>
		</table></td>
	  </tr>
	</table></td>
  </tr>
  <tr>
	<td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
  </tr>
  <tr>
	<td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
	  <tr class="infoBoxContents">
		<td><table border="0" width="100%" cellspacing="0" cellpadding="2">
		  <tr>
			<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td>
<!--				<td align="right"><?php echo tep_image_submit('button_continue.gif', IMAGE_BUTTON_CONTINUE); ?></td> -->
			<td align="left"><?php echo '<a href="' . tep_href_link(FILENAME_DEFAULT) . '">' . tep_image_button('button_continue_shopping.gif', IMAGE_BUTTON_CONTINUE) . '</a>'; ?></td>

			<td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td>
		  </tr>
		</table></td>
	  </tr>
	</table></td>
  </tr>
<?php
 }
?>
</table></form></td>
<!-- body_text_eof //-->
<td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2">
<!-- right_navigation //-->
<?php require(DIR_WS_INCLUDES . 'column_right.php'); ?>
<!-- right_navigation_eof //-->
</table></td>
 </tr>
</table>
<!-- body_eof //-->

<!-- footer //-->
<?php require(DIR_WS_INCLUDES . 'footer.php'); ?>
<!-- footer_eof //-->
<br>
</body>
</html>
<?php require(DIR_WS_INCLUDES . 'application_bottom.php'); ?>

Share this post


Link to post
Share on other sites
I have a problem with the contact_us.

 

If I leave the security code empty, it sends the contact_us page.

 

If I put in one letter in the security code, it says wrong code.

 

The create_account is working fine.

 

 

Which version did you install? Have you read the forum posts above to check you have updated ?

 

If the create account page is working fine, I can only imagine that you have a coding error in your contact us file. Suggest you re-check it?

Share this post


Link to post
Share on other sites
I 'm not using "Search Engine Safe Urls" .

 

I cleared "visual verify code" and then visited contact_us.php

afterwards i see that i have a new entry on the "visual verify code" table, i used the key it was displayed on table and the message sent successfully.

So, the only problem is that the image is not being displayed??

 

 

Did you solve this?

Share this post


Link to post
Share on other sites
Which version did you install? Have you read the forum posts above to check you have updated ?

 

If the create account page is working fine, I can only imagine that you have a coding error in your contact us file. Suggest you re-check it?

 

This the file I downloaded VVC_VERSION_3.zip

 

I copied the files out of the folder "files for new site ONLY" and also added the sql to the database.

Share this post


Link to post
Share on other sites

Hi,

thank you for updating this contribution, the previous version stopped working after our site was moved to a new server with php5. To upgrade, I just uploaded functions/visual_verify_code.php and it works fine. I have not been able to figure out how to increase space between letters, do you have an idea? To randomly move the position of letters, I have changed the following lines:

$y = rand (2, 10);

// $y = $font_position;

Please let me know if you figure out how to increase the space between letter, they are too close to each other - too difficult to read.


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites
Hi,

thank you for updating this contribution, the previous version stopped working after our site was moved to a new server with php5. To upgrade, I just uploaded functions/visual_verify_code.php and it works fine. I have not been able to figure out how to increase space between letters, do you have an idea? To randomly move the position of letters, I have changed the following lines:

 

Please let me know if you figure out how to increase the space between letter, they are too close to each other - too difficult to read.

 

 

You're welcome, glad it worked well for you.

 

I had a look at your site (very nice by the way - you've obviously put a lot of time and effort into that) - I wonder what font you are using for the VVC? You might want to change it as it is a bit pixelated IMO.

 

Also - as a totally side point - what is Absinth? You might want to put a little more info on your site about how it is made / what it is made from / what it tastes of?

 

Cheers

Share this post


Link to post
Share on other sites
Also - as a totally side point - what is Absinth? You might want to put a little more info on your site about how it is made / what it is made from / what it tastes of?

 

Cheers

 

 

Oh, scrub that, I just saw your FAQ - excellent!

Share this post


Link to post
Share on other sites

Thank you for the fast reply and for the kind comments relating to the site - I've been working on it continuously for about two years - it is never ending job! I've tested various fonts, and I'm probably sticking with automatic.gdf as it is quite easily readable. Decreasing size of the font was also decreasing size of spacing, so I keep it at 0.56. Feel free to have a look at it now. I just think that it would be slightly more fool proof to find a font where people will not make mistakes and change 1 for I or type m instead of M, etc. <_<


Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites

when i post some PMs and some Posts it comes up with this erroer code Failed sending email :: PHP :: DEBUG MODELine : 234File : emailer.php it send the PM etc fine but it gets a bit anoying...any advice etc?T.B.C

Share this post


Link to post
Share on other sites

Is it just me or the garbage collection is not working? My visual_verify_code table is 4 MB with records from 2008. You can run "truncate table visual_verify_code;" in phpMyAdmin to clear that table in the meantime.

Edited by mr_absinthe

Absinthe Original Liquor Store

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×