Jump to content
nrlatsha

[Contribution] Credit Card Fraud Detection Service

Recommended Posts

Hmm i tried som different sulotions in checkout_process.php

when i use

 

if (tep_not_null($sql_data_array['cc_number'])) {

require(DIR_WS_MODULES . 'maxmind/maxmind.php');

}

 

it works! BUT i only get?s this result.

 

**************************************************

 

Score: (Extremely Low risk) <------ This seems to work..

Country Match: Country Code: High Risk Country:

Bin Match: Bin Country: Bin Name:

ISP: ISP Org: Distance:

Anonymous Proxy: Proxy Score: Spam Score:

Free Email: Phone Match: Error:

 

************************************************

 

But if i use this code (witch im suposed to) in checkout_process.php

 

if (tep_not_null($order->info['cc_number'])) {

require(DIR_WS_MODULES . 'maxmind/maxmind.php');

}

 

I get the same f*ng errors...

Someone ideas?

Share this post


Link to post
Share on other sites
Hmm i tried som different sulotions in checkout_process.php

when i use

 

if (tep_not_null($sql_data_array['cc_number'])) {

require(DIR_WS_MODULES . 'maxmind/maxmind.php');

}

 

it works! BUT i only get?s this result.

 

**************************************************

 

Score:    (Extremely Low risk) <------ This seems to work..

Country Match:  Country Code:  High Risk Country: 

Bin Match:  Bin Country:  Bin Name: 

ISP:  ISP Org:  Distance: 

Anonymous Proxy:  Proxy Score:  Spam Score: 

Free Email:  Phone Match:  Error: 

 

************************************************

 

But if i use this code (witch im suposed to) in checkout_process.php

 

if (tep_not_null($order->info['cc_number'])) {

require(DIR_WS_MODULES . 'maxmind/maxmind.php');

}

 

I get the same f*ng errors...

Someone ideas?

 

 

HangarS - Give this file a try for your maxmind.php:

 

<?php
/*
 $Id: maxmind.php,v 1.5 2004/09/09 22:50:51 hpdl Exp $
 osCommerce, Open Source E-Commerce Solutions
 http://www.oscommerce.com
 Copyright (c) 2004 osCommerce
 Released under the GNU General Public License
 Noel Latsha, www.nabcomdiamonds.com/www.devosc.com

 2004/07/18 - amended for cc.php by Stuart Owens
 with assistance from Acheron and stevel
 Tested on osc2.2 (Dec 2002 version)
*/

// If you have a liscense key, enter it here and uncomment the line
//$h["license_key"] = "XXXXXXXXXXXX";

// *************************************DO NOT MODIFY BELOW THIS LINE (Unless you know what you are doing **********************************    

$check_country_query = tep_db_query("select countries_iso_code_2 from " . TABLE_COUNTRIES . " where countries_name = '" . $order->billing['country']['title'] . "'");
$check_country = tep_db_fetch_array($check_country_query);
 
$check_state_query = tep_db_query("select zone_code from " . TABLE_ZONES . " where zone_name = '" . $order->billing['state'] . "'");
$check_state = tep_db_fetch_array($check_state_query);

require(DIR_WS_MODULES . 'maxmind/CreditCardFraudDetection.php');
$ccfs = new CreditCardFraudDetection;

//Modify a few variables to match what MaxMind is expecting.
$string = $order->info['cc_number'];
$cc = substr($string, 0, 6); 

$str = $order->customer['email_address'];
list ($addy, $domain) = split ('[@]', $str);

$phstr = preg_replace( '/[^0123456789]/', '', $order->customer['telephone']);
$phone = substr($phstr, 0, 6);

//next we set inputs and store them in a hash
$h["i"] = $REMOTE_ADDR;               // set the client ip address
$h["domain"] = $domain;                  // set the Email domain 
$h["city"] = $order->billing['city'];               // set the billing city
$h["region"] = $check_state['zone_code'];           // set the billing state
$h["postal"] = $order->billing['postcode'];         // set the billing zip code
$h["country"] = $check_country['countries_iso_code_2'];      // set the billing country
$h["bin"] = $cc;                 // set bank identification number
$h["custPhone"] = $phone;              //set customer phone number

// If you want to disable Secure HTTPS or don't have Curl and OpenSSL installed
// uncomment the next line
// $ccfs->isSecure = 0;

//set the time out to be five seconds
$ccfs->timeout = 5;

//uncomment to turn on debugging
// $ccfs->debug = 1;

//next we pass the input hash to the server
$ccfs->input($h);

//then we query the server
$ccfs->query();

//then we get the result from the server
$h = $ccfs->output();

$outputkeys = array_keys($h);
$sql_data_array = array('order_id' => $insert_id,
                       'score' => $h['score'],
                       'distance' => $h['distance'],
                       'country_match' => $h['countryMatch'],
                       'country_code' => $h['countryCode'],
                       'free_mail' => $h['freeMail'],
                       'anonymous_proxy' => $h['anonymousProxy'],
                       'proxy_score' => $h['proxyScore'],
                       'spam_score' => $h['spamScore'],
                       'bin_match' => $h['binMatch'],
                       'bin_country' => $h['binCountry'],
                       'bin_name' => $h['binName'],
                       'err' => $h['err'],
                       'ip_isp' => $h['ip_isp'],
                       'ip_org' => $h['ip_org'],
                       'hi_risk' => $h['highRiskCountry'],
                       'cust_phone' => $h['custPhoneInBillingLoc'],
                       'ip_city' => $h['ip_city'],
                       'ip_region' => $h['ip_region'],
                       'ip_latitude' => $h['ip_latitude'],
                       'ip_longitude' => $h['ip_longitude']);

tep_db_perform(TABLE_ORDERS_MAXMIND, $sql_data_array);
?>

 

Dont' forget to uncomment this line: // $ccfs->isSecure = 0;


9 times out of 10 its a PEBCAK Error (Problem exists between chair and keyboard)

 

Replace that and you're fine...

Share this post


Link to post
Share on other sites

Hi,

 

First I want to thanks to everyone who made this contributions and our work easyer.

 

I usualy solve the problems alone, but this time ... May be it's time to sleep, but can't leeve this unfinished.

 

So my problem is:

"Fatal error: Cannot redeclare class httpbase in /home/u7100311/bulgariana.com/includes/modules/maxmind/HTTPBase.php on line 25"

 

I check everything twice, but this error still appear. Some ideias? I'll check again, but meanwhile if somebody can help I'll be appreciate.

 

Thanks in advance and excuse my english.

 

Becko

Share this post


Link to post
Share on other sites
HangarS - Give this file a try for your maxmind.php:

 

IT WORKS!!!!! YEEEeehaaa!!!

 

THAAANKS!!!!

 

 

nrlatsha i could hug ou right now... many thanks for your time.

 

Score: 0.35 (Extremely Low risk)

Country Match: Yes Country Code: SE High Risk Country: No

Bin Match: NotFo Bin Country: Bin Name:

ISP: ISP Org: Broadband Customers in Scandin Distance: 700

Anonymous Proxy: No Proxy Score: 0.00 Spam Score: 0.00

Free Email: No Phone Match: Error:

 

Did not get any Bin contry and bin name respons but i can live with that =)

 

One more time...

 

TNX

Edited by HangerS

Share this post


Link to post
Share on other sites
Hi,

 

First I want to thanks to everyone who made this contributions and our work easyer.

 

I usualy solve the problems alone, but this time ... May be it's time to sleep, but can't leeve this unfinished.

 

So my problem is:

"Fatal error: Cannot redeclare class httpbase in /home/u7100311/bulgariana.com/includes/modules/maxmind/HTTPBase.php on line 25"

 

I check everything twice, but this error still appear. Some ideias? I'll check again, but meanwhile if somebody can help I'll be appreciate.

 

Thanks in advance and excuse my english.

 

Becko

 

 

IT WORKS!!!!! YEEEeehaaa!!!

 

THAAANKS!!!!

nrlatsha i could hug ou right now... many thanks for your time.

 

HangarS - Hugs are not necessary, however, 50% of your profits over the next ten years will do. I put that in the readme, but I'm sure you read it:

 

Installing this contribution on a website that buys or sells goods and services, with the intention of creating profits, hereby relinquishes the following sums to the contributor: 50% or more of Gross sales (not profits). Payments will be made monthly, or weekly, customer choice. 

Upon installation, the software reports to the centralized NABCOM server, tracking software installations world wide. Failure to file weekly, monthly, and quarterly earnings to the contributor result in delinquent and late fees totaling 100 USD multiplied by the number of times customer can say, ?Sally sells seashells by the seashore? times 10.

Uninstallation of the software does not free you from the constraints of the license; thinking about installing the software also binds you to the terms of the license.

This agreement is binding for the next ten years.

 

Becko - Can you post your maxmind.php? It look like it is calling httpbase twice somewhere...

 

look for this:

require(DIR_WS_MODULES . 'maxmind/CreditCardFraudDetection.php');

 

in there twice...


9 times out of 10 its a PEBCAK Error (Problem exists between chair and keyboard)

 

Replace that and you're fine...

Share this post


Link to post
Share on other sites

Hello,

 

I installed the contrib using the default CC module.

 

When I click on confirm order, and ehile processing checkout_process.php I get the following error,

 

Fatal error: Cannot redeclare class httpbase in /home/newindoc/public_html/web-cartv2/catalog/includes/modules/maxmind/HTTPBase.php on line 25

 

I installed V1.52. If you would like to see for goto http://store.newindo.com .

 

Please advise what to do.

Share this post


Link to post
Share on other sites
Hello,

 

I installed the contrib using the default CC module.

 

When I click on confirm order, and ehile processing checkout_process.php I get the following error,

 

Fatal error: Cannot redeclare class httpbase in /home/newindoc/public_html/web-cartv2/catalog/includes/modules/maxmind/HTTPBase.php on line 25

 

I installed V1.52. If you would like to see for goto http://store.newindo.com .

 

Please advise what to do.

 

Changed the maxmind.php and func called checkout_process.php. It's seems to be working now.

Share this post


Link to post
Share on other sites

Hi nrlatsha

 

I have installed it and i am using 2Checkout Payment.

 

here is what i get while viewing an order in Admin.

 

Maxmind.gif

 

All the fields are empty.

 

is it due to the fact the Osc does not collect the CC details when using 2Checkout as payment.

Share this post


Link to post
Share on other sites

SSD - Glad to hear you got it sorted. :D

 

is it due to the fact the Osc does not collect the CC details when using 2Checkout as payment.

 

Exactly right Farrukh :thumbsup:


9 times out of 10 its a PEBCAK Error (Problem exists between chair and keyboard)

 

Replace that and you're fine...

Share this post


Link to post
Share on other sites

I am having problems. I am fairly new to oscommerce, but have been able to install some contributions already. This confuses me "Add the included files to your catalog/includes/modules/maxmind". When I go to upload the files, I don't see maxmind in the module area, so where do I upload them to? Also, I have EZ" Secure Order & Customer Viewing for osCommerce contribution installed that encrypts the credit card data, could this be a problem. I did run through the installation once and just uploaded the maxmind files under modules. My site worked fine and maxmind showed up under the credit card orders in the admin section, but when I ran through the checkout process with my credit card, I got this error

"Warning: main(includes/modules/maxmind/CreditCardFraudDetection.php): failed to open stream: No such file or directory"

in my checkout_process.php line 280

 

"Fatal error: main(): Failed opening required 'includes/modules/maxmind/CreditCardFraudDetection.php' (include_path='.:/usr/lib/php:/usr/local/lib/php')"

in my checkout_process.php also on line 280

 

My test orders still went through to admin and I got the emails, but nothing forwarded to maxmind.

 

Can someone please help?

 

Thanks in advance,

Cyndi


Is it reality or just a dream, for some there is no difference.

Share this post


Link to post
Share on other sites

Hi

 

Thanks for a great contribution :thumbsup:

 

However, I've got one problem and I'm not sure which file to correct.

 

When I view the order, the headings are in the format of MAXMIND_COUNTRY, MAXMIND_BIN_MATCH, etc.

 

How do I correct the headings?

 

Many thanks.

Share this post


Link to post
Share on other sites

OK, found the problem:

 

In Step 5, the file to be amended is catalog/admin/languages/english.php, not catalog/languages/english.php as stated in the instructions. :'(

Share this post


Link to post
Share on other sites

Found a potential bug while installing this mod tonight. I followed the install directions completely and everything seemed to be working. Did a dummy order and got a mysql INSERT error. Basically it was trying to insert to a DB that wasn't there.

 

Problem is in maxmind.php:

 

Second to last line:

tep_db_perform(TABLE_ORDERS_MAXMIND, $sql_data_array);

should be:

tep_db_perform(orders_maxmind, $sql_data_array);

 

After changing that the mod works fine! Simple typo it looks like. Hope this helps.

Share this post


Link to post
Share on other sites

I have just changed host and noticed that maxmind results on new orders uses the webhost as the ISP instead of the persons ISP, any help in correcting this?

Share this post


Link to post
Share on other sites

the problem is as follows. Maxmind is using the sites hosting ip instead of the customers. All new orders appear to have the webhost name instead of the customers isp, any help appreciated.

Share this post


Link to post
Share on other sites
The check will be done when the customer checks out of the store (if they paid with a credit card)

 

It inserts the reply back from MaxMind into the database so you don't query them every time you pull up the order page.

 

You can view an image here: http://www.nabcomdiamonds.com/catalog/images/maxmind.jpg

hey noel i need your help badly man can get intouch so i can show you transaction

files? because i am knew to e-commerce

the case is....

 

we operate under the name cmpbeats.com. i have read the article paypal.

why has the consumer all the rights and retailers like myself none?

we had a reversal,by paypal no explanation,the client is happy ,we are not what is going on? the clients,taking in mind this site is a instant downloadable site,they have the goods,they have mailed me to say we are the best site of this type on-line they have asked me to keep in touch,yet paypal have returned the payments to them,and now we are endetted to paypal? why not give an explanation? mike


(((((cbeats)))))

Share this post


Link to post
Share on other sites
The check will be done when the customer checks out of the store (if they paid with a credit card)

 

It inserts the reply back from MaxMind into the database so you don't query them every time you pull up the order page.

 

You can view an image here: http://www.nabcomdiamonds.com/catalog/images/maxmind.jpg

hey noel,what would be the best way to change to credit card only do i have to change the shopping basket ,adding extra cost?

(((((cbeats)))))

Share this post


Link to post
Share on other sites

No trouble setting up, seems to work fine in my test, do not have the maxmind acct number yet so that field is xxx, but the data in customer orders looks like I think it should.

 

My question is this: why did I have to set ssl = 0 in maxmind.php to get it to work? When the order is placed, it is https all the way. My server has curl, ssl works properly, is anything wrong with my system or install?

 

By the way, this may be the coolest mod I have seen, I only hope that the maxmind program is really useful in reducing risk, have not studied it enough yet to know.

Share this post


Link to post
Share on other sites
OK, found the problem:

 

In Step 5, the file to be amended is catalog/admin/languages/english.php, not catalog/languages/english.php as stated in the instructions.  :'(

 

Just downloaded latest ver and the instructs (html) are still wrong on the languages path. Simple reroute but for a newbie could cause a problem.

 

Noel can you correct this in your html installation guide?

 

--KJ


define('PROJECTS', 'Something that goes on forever!');

Share this post


Link to post
Share on other sites

hey thankyou so much for this excellent contribution. I have followed all the steps in your installation file and i see no effect.

 

some customers palced the order after this contribution was installed but nothing happend at all. The orders page looks same as before

 

i am using firepay contribution for processing CC orders and my merchant provider is Optimal Payments

 

can you please tell me if this will work with it and what am i doing wrong.

 

your help is very much apprecaited

 

thankyou

Share this post


Link to post
Share on other sites

Anyone tried using this as a more "general" fraud checker? I'm interested in using it with PayPal and/or 2Checkout but I do not process CC's; I send them to 2Co's page to enter their CC #.

 

So.... with a little modification, can this be used to check their sign-up info? I mean, when they create the account or something?

Share this post


Link to post
Share on other sites

Hi, I have install this contribution and I exec maxtest.php and it works fine. But This information dont show in the order body (in administration).

 

One of step in the test is

 

catalog/includes/functions/general.php

 

what have I do with general.php?

 

Thank you very much.

Share this post


Link to post
Share on other sites
hey thankyou so much for this excellent contribution. I have followed all the steps in your installation file and i see no effect.

 

some customers palced the order after this contribution was installed but nothing happend at all. The orders page looks same as before

 

i am using firepay contribution for processing CC orders and my merchant provider is Optimal Payments

 

can you please tell me if this will work with it and what am i doing wrong.

 

your help is very much apprecaited

 

thankyou

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×