I am a long time Opencart user. Thanks for all the great work.
After the recent upgrade to 3.0 we started experiencing Customer registration Spam. Mostly Russian addresses.
I get about 50 every day. There doesn't seem to be anything else going on, just the registration. We tried Captcha and RE-Captcha and doesn't even slow them down. The IP's are all different. I searched the forums here and can't seem to find anything recent. I would be grateful if someone has a solution to this. I am afraid something sinister may happen and frankly its annoying deleting all of those registrations every few days.
Thank you in advance for any help.
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
The problem you reported is not related to Opencart 3, it affects Oc 1.5, Oc, 2, wordpress and joomla sites and the issue is exactly as you described in all the platforms.
There are new spambots capable of solving traditional alphanumeric captchas so I wrote an Opencart plugin 5 years ago to block also this kind of spam, link here:
https://www.opencart.com/index.php?rout ... n_id=13097
Smart Antispam Shield is completely invisible to users and it provides several levels of protections (client side and server side).
I released an update just three days ago and according to some webmasters that installed it, the basic protection is already enough to block spam.
Hope it helps!
Our new Opencart Extension:
AI Assistant - automatic product and category text generator
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Anyway - thanks Straightlight. Can i make this work for 1.5.6.4??
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
I am having the same problem as the people above, flooded with spam registration daily, the recaptcha you mention within the admin panel, it is there and I can select where I want it to be activated but in the drop down box where you select which captcha to use there is nothing, literall, as all it says isstraightlight wrote: ↑Fri Apr 13, 2018 9:09 amIt has been proven to work with v1.5x releases as well. Although, due to the old ways of using the site compression level compared to the more recent releases of Opencart, no promises can be delivered at this point. At least, it doesn't affect anything when the process fails to output on the view source. If you do not wish to pay the $15.00 fee for the re-captcha module, I would then suggest to try the recaptcha module from the core in your admin - > extensions - > extensions - > captcha page.
--- None ---
Any ideas?
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
I can see references to some code added for v1.5.6.4. However, the current download is clearly for v2.3.0.2 and above.
Would you still have the previous version available, or is there any chance you could outline the required changes for older versions of OpenCart?
or then, I tried it with a v.2.x, a good while ago, I forget, but I've never
got it to function, for what reason ever...
But as it comes by now, it won't work in 1.5.6.x.
---
Anyway, for v.1.5.6.x, one Solution would be, to let Registrants make to
first confirm their e-Mail, by sending them a confirmation mail with a link,
wich needs to be clicked, before the Admin then manually activates them.
This way, they can at least do no harm, and since they don't confirm their
registration anyway, the Admin can see easy, who was trying to get in, and
eventually block/reroute IP-ranges and/or eMail Providers, related wich such ...
Ernie
---
https://www.opencart.com/index.php?rout ... rification
---
My Github OC Site: https://github.com/IP-CAM
5'200 + FREE OC Extensions, on the World's largest private Github OC Repository Archive Site.
My issue is actually with contact form spam, mostly from Russia. We are bombarded with at least 10 every day. I really need a solution to fix this.
I may look into Google reCAPTCHA, or perhaps even this extension: https://www.opencart.com/index.php?rout ... n_id=13097
My only concern is that the extension may not even work as intended. I don't mind paying a developer for a good product that works, but at this stage I am uncertain.
That's what always turns me off immediately, it's advertizing for Dummie's,The regular price is 49$, buy it now and SAVE 15$. The Promotion ends TODAY.
since it will still be on that Page shown by next Year...
---
But other than that, I don't know, how this service operates, so I could not judge.
It's a daily fight, to keep 'em off, and it only works, if either a URL is rerouted first,
by going trough some kind of Filter like this Site here. And such usually also slows
down first Pageload too. Or then, a Blocking List in the .htaccess file is required,
to either lock out individual IP-Numbers or entire IP Ranges. Such a List can get quite
large, my biggest one contains 1810 Lines of things, but it's quite aged already ...
But if one only 'serves' a certain World Region, one could widely lock out the rest of world.
But then, one still could use TOR, or Proxies, to visit you trough other 'channels', and you'll
still need to regularely update your .htaccess file entries. And pray, not to accidentally lock
out some of your Customers too, like it frequently happened to me...
---
The only problem is, any 'Security' outside of your own Server enable others, to also know,
what going on in your place. We're in the Information Business, and Information Age, and
everything has it's price, shown or hidden, always consider this to be a Fact.
Good Luck!
Ernie
---
Sample Code:
Code: Select all
<Files *>
order allow,deny
allow from all
deny from 37.59.
deny from 46.229.31.30
deny from 63.243.
deny from 125.
deny from 163.172.121
deny from 180.76.
</Files>
My Github OC Site: https://github.com/IP-CAM
5'200 + FREE OC Extensions, on the World's largest private Github OC Repository Archive Site.
I have an older Magento 1.9x installation that gets a ton of account registration spam from Russia and China. None of the CAPTCHA solutions available for that version have worked. I had to set new accounts with an email confirmation to try to keep them from trying to abuse various email features on the site, but I still have to delete hundreds of spam registration attempts every month, plus I get a bunch of mail delivery failures from the spam account registrations. I was going to upgrade to the latest Magento which offers more spam solutions apparently, but after installing it I found I really disliked it in general.eWarrior wrote: ↑Sat Apr 28, 2018 8:01 amErnie,
My issue is actually with contact form spam, mostly from Russia. We are bombarded with at least 10 every day. I really need a solution to fix this.
I may look into Google reCAPTCHA, or perhaps even this extension: https://www.opencart.com/index.php?rout ... n_id=13097
My only concern is that the extension may not even work as intended. I don't mind paying a developer for a good product that works, but at this stage I am uncertain.
With my first OpenCart installation for another venture, that was finished last week, I enabled the "I am not a robot" reCAPTCHA and so far there hasn't been a single spam account registration. Hopefully that isn't just because the site is new. If it does keep them at bay, I am going to redo the old Magento site and use OpenCart instead.
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
I am the developer of the extension in your link, I can send you my extension for free (just pm me), and if it works like it did for the 230 sites where the extension is already installed, you can buy the license on Opencart.
Our new Opencart Extension:
AI Assistant - automatic product and category text generator
thanks
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Big Decision
Website Production, Ecommerce & Digital Marketing in the UK
http://www.bigdecision.co.uk