Jump to content

  • You cannot start a new topic
  • You cannot reply to this topic

Flood Of Spam/fake Registrations - Should We Be Concerened? Rate Topic   - - - - -

 

Posted 22 November 2017 - 02:42 AM #61

This is the review Add-On: http://www.cscartroc...view-addon.html

You can set it to "sign in to review" or "purchase to review". I have it set to purchase. Can't help with the code for the email though but I'm sure someone here with CS-Cart coding knowledge will know how to  or figure out pretty quickly how disable that function and be able to share the change. The person I paid to do it did it pretty quickly and easily.



 

Posted 22 November 2017 - 02:46 AM #62

Hi InspiredInsanity, 
Can you share the Code changes or link us to the Add-on?

I too am frustrated with the lack of attention CSC gives to providing basic functionality.

By "basic functionality"  I mean the many little things like this that added together make a very big difference in admin work-flow efficiency. Such a small code change could fix this, but each issue on its own seems to have no significance CSC architects. Minor issues (not minor to me) often just get side stepped with the opinion that no fix is needed just because only one or two people have reported the issue.

Out of interest, which platform did you switch to?

I've moved to Magento. Afterpay and Zippay were a big driver and wanting something a bit more future proof. Everything seems to be designed to work with the big players like Magento and Shopify, etc but I didn't want to downgrade from CS-Cart to Shopify. It's def more resource heavy and needed a big upgrade in hosting but I don't want to get left behind again with future e-commerce developments. There's pros and cons for every platform but it was ticking the boxes CS-Cart wasn't moving forward on.



 

Posted 22 November 2017 - 02:50 AM #63

I dealt with the constant fake registrations for over a year but the straw in the end was a person who contacted the police in a panic believing their identity had been stolen and used to shop in my store. I don't want to deal with that kind of drama when it really should have been fixed or at least acknowledged months ago.



 
  • remoteone
  • Member
  • Members
  • Join Date: 06-Oct 09
  • 776 posts

Posted 22 November 2017 - 03:07 AM #64

Cheers, Ill look at the addon.

I looked at Magento but there were too many negatives for us.
Sticking with CSC but just wish some attention was applied to the many little things as well as this important issue of spam..



 

Posted 22 November 2017 - 03:26 AM #65

Agree, CS-Cart is great. Would have been more than happy to stay on if only they would fix the security issue and allow Afterpay and Zippypay to be implemented in a cost effective way.



 
  • poppedweb
  • Authorized Reseller
  • Members
  • Join Date: 02-Aug 16
  • 553 posts

Posted 22 November 2017 - 06:43 AM #66

I've moved to Magento. Afterpay and Zippay were a big driver and wanting something a bit more future proof. Everything seems to be designed to work with the big players like Magento and Shopify, etc but I didn't want to downgrade from CS-Cart to Shopify. It's def more resource heavy and needed a big upgrade in hosting but I don't want to get left behind again with future e-commerce developments. There's pros and cons for every platform but it was ticking the boxes CS-Cart wasn't moving forward on.

 

Yes, I complained about this issue as well. CS-Cart is too busy doing stuff where people do not care about. After the community complained about the options for almost 4 years straight they finally implemented it. They need to stop taking so long to develop crucial features that are must-haves in E-commerce environments.  


PoppedWeb | sales@poppedweb.com | https://poppedweb.com
TurnKey Website Design | Add-Ons | Performance Audits | Dedicated Server Management
24/7 Support | Response within an hour (during working hours).

 
  • Alt-team
  • CS-Cart Developer
  • Authorized Reseller
  • Join Date: 18-Jan 11
  • 2784 posts

Posted 22 November 2017 - 02:37 PM #67

Several times we have created honeypots for subscription and for comments and reviews. It doesn't cost a fortune. But, of course, it is a bit more expensive than an add-on as it's impossible to create one code suitable for every CS-Cart store.


ADD-ONS  Web development service  | CS-Cart dedicated developers

Buy MULTIVENDOR - USD 1250 (14% off)   Buy CS-CART LICENCE - USD 345 (13% off)

 Email - manager@alt-team.com | Skype - Altteam    


 
  • mazter
  • Senior Member
  • Members
  • Join Date: 04-Apr 12
  • 275 posts

Posted 27 November 2017 - 08:55 PM #68

Can you please create a ticket in HD and provide us with 

- access to your website

- example of the spam emails you got, including the page they were posted from.

 

If you already described this problem somewhere on the forum, please provide a link.

 

Just seeing your response. I didn't have time to create ticket with your team.

 

I only got 1 spam message like this. I created another thread where I posted IP addresses and subnet I added to our firewall but I can't find it on the forum right now.

 

There are subnets from Ukraine, Lithuania and couple of other countries keep attacking our website and spamming our forms. They try to login - register and try to find ways to disturb our regular operation. My solution was to block them at the server level so they can't even reach to the website.



 
  • mazter
  • Senior Member
  • Members
  • Join Date: 04-Apr 12
  • 275 posts

Posted 27 November 2017 - 08:57 PM #69

Here you go just found it. I have an updated IP filter now that I use and it kicked out all the intruders.

 

http://forum.cs-cart...cart-attackers/



 
  • imac
  • Head of Product
  • CS-Cart Architects
  • Join Date: 22-Nov 05
  • 2074 posts

Posted 28 November 2017 - 01:36 PM #70

Agree, CS-Cart is great. Would have been more than happy to stay on if only they would fix the security issue and allow Afterpay and Zippypay to be implemented in a cost effective way.

We provide security fixes usually within 24 hours.

What security issue did no we fix?

 

As for "allow Afterpay and Zippypay to be implemented in a cost effective way." what do you mean by that?


Ilya Makarov,
CS-Cart Architect Team
Suggest and vote for new features | Report a bug

 
  • Mtech
  • Advanced Member
  • Members
  • Join Date: 09-Oct 14
  • 53 posts

Posted 27 December 2017 - 12:54 PM #71

Cheers, Ill look at the addon.

I looked at Magento but there were too many negatives for us.
Sticking with CSC but just wish some attention was applied to the many little things as well as this important issue of spam..

 

Remoteone, what solution did you end up using or installing, to fight the spam?



 
  • remoteone
  • Member
  • Members
  • Join Date: 06-Oct 09
  • 776 posts

Posted 27 December 2017 - 01:06 PM #72

Our v2 store, sells mainly to Australian customers.

So I just blocked htaccess to several entire countries known to send a lot of spam, and just add the Russian IPA ranges of spammers as it comes in. Dont want to block all of russia for CSC helpdesk reasons.

 

On our newer v4 store, we block root access SSH attempts with Fail2ban. and will look at the add-on that requires registered login to post testimonials once the site gets more traffic.