Re: spam mods not working on contact page or on create account
Originally Posted by
delia
That is the one that isn't working.
Actually, its working grate for me... unfortunately, I'm not getting anything other then the above... which is no help.. so hears another wack..
I've been answering as much as I can... but seems no one wishise to answer the posting tips so all I can do is play wack-a-mole at a answer... CAPTCHA, honey pot or Google is only one piece of the answer, on my site I'll test at different levels of attacks including sql injections before I ever go live with a new form. When I tested a vanilla install with knowing attacks, I can not get any scripting into the sql table!
When I start the form, by the time I get to the CAPTCHA, I have other things in place that keeps the form human friendly. Which is nice because that in it self stop most attacks on there own.
I also block IP's that I don't sell to or show hack attempts, I block email address and domains I don't sell to or try to spam me.. I turn off countries in the address system that I don't sell to.
When I hear that html is getting into the sql for names/addresses, that is a failure of basic sensitization.. To do that, something was changed in the header file.. may be a template issue or the site was hacked.
Most of the issues could be resolved by upgrading to the latest code Zen Cart, PHP and email servers... I had to leave a host that refused to upgrade there email servers which was getting hacked all the time.
I have traced attempts on my site and found the honey pot was stopping the bots! Which is why I say its working...
If you don't want to answer the questions, PM me and I can checkout the front side or work something out...
Dave
Always forward thinking... Lost my mind!
Bookmarks