Hello guys.
I have done many modifications to my cart on the core and all other files. All changes were made in 4 years of usage of the cart, plus plugins added, free and purchased.
I have tried to upgrade to the latest version in two occasions and it turned out so wrong that I had to go back to 1.38a (my backups) on both attempts.
I tried all I could and even purchased a software for file comparisons (beyond compare) in an attempt to locate all the changes in the text files, but it was a nightmare of hundreds of lines of code differences.
The thing is that for all those 4 years, my store has worked and still is working perfectly as it is and probably will keep that way for the rest of its existence.
My only concern are hack attempts in the most vulnerable area it has right now, the admin login page. I guess it allows for brute force attacks because there is no delay between attempts, no captcha or no count on the login attempts to block the IP temporarily after, let's say, 5 attempts.
Is there any modification, free or paid to protect the admin area in v1.3.8a? A captcha in the admin login would be nice, but a counter of login attempts with IP blockage would be perfect. If there is no plugin or modification for this, does anyone know a trustworthy freelancer or developer that can do it?
My cart is v1.3.8a and it is been run in a SSL enabled server:
Server OS: Linux 2.6.18-408.8.2.el5.lve0.8.61.3
Database: MySQL 5.5.30-cll
Apache/2.2.23 (Unix)
PHP Version: 5.2.17 (Zend: 2.2.0)
Thank you for your suggestions.


Reply With Quote

