You are viewing this forum as a guest. Login to an existing account, or create a new account, to reply to topics and to create new topics.
We are running an old version of CCP - for a very simple shopping cart. We do not use any mail functionality, again just simple shopping functions. Our hosting company has just closed down our shop and has emailed us the following:
The online shop software that you have installed in the above location lacks any effective moderation settings and spammers were abusing it by posting massive amounts of spam comments. When spammers begin to flood your scripts with spam comments, they bring very high load on the shared hosting server, this way affecting the uptime and the proper operation of all the websites hosted on the same machine.
Please always make sure that you have proper moderation enabled. Also please keep in mind that whenever you use a third-party software application, you must regularly check the official website of its vendors/developers for latest security patches and new stable versions.
Please contact us here once you are ready to secure your application.
Does anybody have any idea how I can secure the cart without doing a full upgrade .... I really have no idea what they mean by the cart lacking moderation.... any help much appreciated.
Offline
Version 5.1
The problem is that spammers have posted hundreds of links on each product page. They all appear as added products in the Shopping Cart summary at the bottom of each page.
Yet they are present when you first click on a product - as if the shopper has already added hundreds of items to the cart.
Offline
I have supported ccp, including v5.1, for years and I have never heard of this happening before. You are saying that a script is slamming your store with addtocart requests, bringing your server down?
If thats the case, it sounds like an intentional denial of service attack on your site. I coud write a filter to detect and stop such actions if you need it. PM or email me for a cost estimate.
Offline
I would strongly suggest looking at upgrading to CCP7
Offline