Post by sooty » Thu Oct 24, 2019 2:25 am

Hi

I'm watching the customers online feature in admin and I'm getting multiple requests for non existent zip files in the domain route, for example;

http://domian1.com/english.zip
http://domain1.com/secret.zip

and loads more, on both the primary domain and another domain I'm testing multistore with.

Is this some form of hacker, and if so how do I block these attempts?

Can I do a global *.zip redirect and send them off to a blackhole?

New member

Posts

Joined
Fri Sep 21, 2012 4:59 am

Post by johnp » Thu Oct 24, 2019 2:41 am

I get those all the time on my sites. I use cidram which is great at protecting sites from bad traffic.

Opencart 1.5.6.5/OC Bootstrap Pro/VQMOD 2.6.4 lover, user and geek.
Affordable Service £££ - Opencart Installs, Fixing, Development and Upgrades
Plus Ecommerce, Marketing, Mailing List Management and More
FREE Guidance and Advice at https://www.ecommerce-help.co.uk


User avatar
Active Member

Posts

Joined
Fri Mar 25, 2011 10:25 am
Location - Surrey, UK

Post by sooty » Thu Oct 24, 2019 9:03 pm

I think I've cured it.

We have a 301 Redirect module installed and I used that to redirect */*.zip and */*.csv to an image hosted off my server.

Seems to have stopped them.

New member

Posts

Joined
Fri Sep 21, 2012 4:59 am

Post by johnp » Thu Oct 24, 2019 10:54 pm

That'll work but is still not as secure as using CIDRAM.

Opencart 1.5.6.5/OC Bootstrap Pro/VQMOD 2.6.4 lover, user and geek.
Affordable Service £££ - Opencart Installs, Fixing, Development and Upgrades
Plus Ecommerce, Marketing, Mailing List Management and More
FREE Guidance and Advice at https://www.ecommerce-help.co.uk


User avatar
Active Member

Posts

Joined
Fri Mar 25, 2011 10:25 am
Location - Surrey, UK
Who is online

Users browsing this forum: No registered users and 49 guests