Johnathan wrote: ↑Fri Jun 22, 2018 9:51 pm
No, it doesn't use Wordpress. It uses a custom-tailored version of OpenCart ...
Oops, sorry, I did not spend enough time on checking about this ...
---
I’m guessing by the lack of response people don’t care.
Well, this might be you opinion, and you're possibly not the only one, still, OC comes for
free, and if one cares, to mock it up, to meet some additional security related Spec's, not
covered by OC, one is also free, to do this. OC never claimed, to have it all, in contrary,
OC always depended on DEV's, to add, what's not planned, to be part of a strictly BASIC
Software. Otherways, OC would not have been able, to generate any Income, to survive !
But, in my case, I was not even aware of those 2 Test-Sites, and what's written there about,
and for 99.9 percent of OC -Users, including me, it looks more like another way of Marketing,
trying, to sell something, by talking about Security Risks, and at worst, leaving the impression
to code-unpro visitors, that their Site is possibly in great danger.
And some of it could not even be implemented by Users, if the don't run their own Servers.
But most also don't plan, to build their own online Fort Knox, but only a simple Online Shop,
wich, as it looks, works quite well. At least, if served by a decent hoster, and built by someone,
at least familiar with CHMODE, .HTACCESS, and setting up OC, as it should be done. It's a
commercially used Software, after all. So, it's up to the User, to take Care, after getting
a free Helper - like in any other Business too, to hopefully get rich quick. And who's not
able to, for what reason ever, shall not succeed, that's the Number One Rule of Competition.
During my OC-Time, I build a few hundreds of Testshops, and experienced a few thousand
hacking attemps since. But not a single one of them was able, to break my Sites, or kill something.
But I am also aware of, that many security-related Topics have been published, all over the place,
claiming, that, under certain circumstances (wich cannot even exist in real), some Badcode could
do some harm somewhere. It's therefore mostly Panic-Talk, but rather seldom of real value, or use.
But that's my personal feeling only, and I am neither a Code Security Specialist, nor a Coder
---
But you already had some problems, as it looks, by seemengly enabling something, to add
additional Code to one of your payment-related files.
Has this also been a 'default' OC failure, or did you just upload 3th-party Code, without
looking at it first ?
Code: Select all
Scumbag got an email EVERY time credit card details entered on my website....
---
it should come before ‘nice to haves’ such as users/customers being able to delete an account themselves.
That's not a problem, and some extensions already existed 8+ Years ago, I was even able,
to make this work as planned.
viewtopic.php?t=22483
---
And for those, unable to make it work for later OC Versions, but serving the European Market,
they could also buy one here, for the simple equivalent of a small Steak and a Beer:
https://www.opencart.com/index.php?rout ... n_id=34030
---
But why did you move up anyway, after having made your OC-2 be secure ?
If you would have been around here more, during those 8 Years, you would have known ...
Good Luck, no offense!
Ernie
)
