Unsurprisingly, I seem to have already caught a bug. When I click anywhere on the homepage, a strange link opens in a new tab. This seems to be a familiar mal/ad-ware. Checking the page in developer tools shows a strange script has been inserted/called somehow. It is not always the same script that gets inserted, but the pattern is identical. Of course, when I do a real installation I will need to make it more secure, but for now, how do I go about finding which code is responsible for inserting this?
If you haven't already, change all your passwords (OpenCart admin, FTP, ect.).
Check your FTP logs to see if anyone have modified footer.twig.
I'm using version 220.127.116.11. No extensions. I don't know about the theme, just the default I suppose. I'm not using FTP, just installed it via the OS package manager.
Thanks for that, I'll look at this file right away.Check your FTP logs to see if anyone have modified footer.twig.
I am now almost certain that one of the upstream servers, likely the ISP's is infected. I posted here because I had driven myself nuts over the past few days, having scanned my computer with 4 different antivirus programs, and scoured through my server logs.
As I said in my original post, this setup was just for testing/trying-out, so I hadn't set up ssl. Presumably, something somewhere upstream is able to inject stuff into specific kinds of non-encrypted traffic.
The clues that led me to it was 1) when I access this non-ssl page http://docs.opencart.com/en-gb/administration/security/ , it had the exact same adware. I think it is extremely unlikely the OC docs (with all the eyes they get, being open source) being infected. And 2) a brand new VM I spun up on my computer also shows the same adware. I can't imagine a brand new freshly installed VM being infected. 3) When I open the sites via a VPN, it works just fine, no adware.
I hope I am right about this...
Thanks for the support, sorry for the trouble.
Strongly suggest to use SSL in this case since the encryption library in Opencart does rely on that specifically.so I hadn't set up ssl. Presumably, something somewhere upstream is able to inject stuff into specific kinds of non-encrypted traffic.
The most generated errors being found on Opencart forum originates from contributed programming. The increased post counters are caused by redundancies of the same solutions that were already provided prior.
Programmer / Opencart Tester
Users browsing this forum: No registered users and 24 guests