So I have a super old opencart 1.5.6 install with probably over 1,500 products for my father. the site is pretty much nonfunctional due to PHP updates on my host; you can't add anything to your cart or check out, but it serves us perfectly for SEO purposes and can't really do without the site at the moment. We're pretty much stuck with it for now.
For the past several months I've been getting strange "New Customer" emails from the site. Again the site is nonfunctional and you can't even go in there and register an account if you wanted to.
These emails are coming in more and more frequently, several times a day, and everything is just jibberish but it does contain what seems to be a valid email address and phone #. Again I know this can't be possible. Here's a screenshot of one of the emails.
For the past several months I've been getting strange "New Customer" emails from the site. Again the site is nonfunctional and you can't even go in there and register an account if you wanted to.
These emails are coming in more and more frequently, several times a day, and everything is just jibberish but it does contain what seems to be a valid email address and phone #. Again I know this can't be possible. Here's a screenshot of one of the emails.
Your website is being targeted by spambots doing fake account registrations. For newer OC versions there are anti-spambot tools like our SpamBot Buster. But yours is quite an old OC version. You may want to search the OpenCart marketplace for a suitable anti-spambot extension, or find a professional developer on the commercial forum section who could port a suitable anti-spambot or captcha tool back to your OC version as a custom job.
BTW.: The standard OC captcha tool which is supposed to prevent spambots from doing fake account registrations is pretty useless, most modern spambots easily overcome it!
BTW.: The standard OC captcha tool which is supposed to prevent spambots from doing fake account registrations is pretty useless, most modern spambots easily overcome it!
Export/Import Tool * SpamBot Buster * Unused Images Manager * Instant Option Price Calculator * Number Option * Google Tag Manager * Survey Plus * OpenTwig
What exact OC Version do you use?the site is pretty much nonfunctional due to PHP updates on my host
But whatever you reply to this, FIRST, replace the content of your
system/library/encryption.php file with this one, to make PHP v.7.4.x work:
Code: Select all
<?php
final class Encryption {
private $cipher = 'aes-256-ctr';
private $digest = 'sha256';
private $key;
public function __construct($key) {
$this->key = $key;
}
public function encrypt($value) {
$key = openssl_digest($this->key, $this->digest, true);
$iv_length = openssl_cipher_iv_length($this->cipher);
$iv = openssl_random_pseudo_bytes($iv_length);
return base64_encode($iv . openssl_encrypt($value, $this->cipher, $key, OPENSSL_RAW_DATA, $iv));
}
public function decrypt($value) {
$key = openssl_digest($this->key, $this->digest, true);
$iv_length = openssl_cipher_iv_length($this->cipher);
$value = base64_decode($value);
$iv = substr($value, 0, $iv_length);
$value = substr($value, $iv_length);
return openssl_decrypt($value, $this->cipher, $key, OPENSSL_RAW_DATA, $iv);
}
}
?>
My Github OC Site: https://github.com/IP-CAM
5'200 + FREE OC Extensions, on the World's largest private Github OC Repository Archive Site.
Good for you !
And to make it even better, check the image, and change all
those 'Routines', by adding that (INT), where it needs to done,
(for what unknown to me reason ever), in the Admin + Frontside
'controller' sections, where EXACTLY that routine exists.
It has something to do with security, I assume, but not beeing
Coder, I really don't know ...
Ernie
PS. A few other PHP v.7.4.x capable encryption.php Files also exist,
possibly matching some OC Versions better, just to have it mentioned too:
viewtopic.php?f=181&t=199924&p=804581#p804581
---
And to make it even better, check the image, and change all
those 'Routines', by adding that (INT), where it needs to done,
(for what unknown to me reason ever), in the Admin + Frontside
'controller' sections, where EXACTLY that routine exists.
It has something to do with security, I assume, but not beeing
Coder, I really don't know ...
Ernie
PS. A few other PHP v.7.4.x capable encryption.php Files also exist,
possibly matching some OC Versions better, just to have it mentioned too:
viewtopic.php?f=181&t=199924&p=804581#p804581
---
My Github OC Site: https://github.com/IP-CAM
5'200 + FREE OC Extensions, on the World's largest private Github OC Repository Archive Site.
If you replace int with beer you will not see the warnings
Upgrade Service | OC 2.3.0.2 PHP 8 | My Custom OC 3.0.3.8 | Buy me a beer
If it's the normal account registration form that bots are using, I have an Account Registration Captcha extension that still works on OpenCart 1.5.6. That would let you place a captcha on the registration process, so that someone has to fill it out to register a valid account.
Feel free to take a look at the screenshots and demo site, and if you're interested let me know at www.getclearthinking.com/contact if you have any further questions.
Feel free to take a look at the screenshots and demo site, and if you're interested let me know at www.getclearthinking.com/contact if you have any further questions.
Who is online
Users browsing this forum: No registered users and 91 guests