The NEW 2.2 MS2 ?

[Luke99]

I hope this got your attention....

 

Here's the thing:

 

I've had a CVS2.2 MS2 install for a few years now, then last week while completely redoing the website I decided to put the store in the root directory.

Ok, all went well except now the store is giving SID's to spiders. Not good.

 

Why would changing directories do this? Or is it something else?

 

Could NOT find the problem, so I decided it was time to upgrade to MS2 from CVS. Which has the "Prevent Spider Sessions" thing in the admin. Seemed like a good idea.....

 

Here's the clincher:

 

I installed the version right from OSCommerce's mainpage here.

 

And it does NOT have the "prevent spider sessisons" but it has a new "links" section in the Admin panel which has a "Spider Friendly Links" feature; which is supposed to block spiders from getting sid's I suppose....

 

BUT, it doesn't work!!!!!!! Well, not for me anyways.....

 

SO which version is this? A pre MS3?

 

The real question is:

 

How do I fix this problem?

 

If anyone has any clues please feel free to share your ideas as I am frichen going crazy here....

 

Luke

[Guest]

There must be something wrong because on a stock 2.2MS2 in admin->configuration->sessions there is the prevent spider session option

 

The_Bear

[Luke99]

I forgot to mention that I also installed ( a 3rd store) OSC that comes with my hosting package and it HAS the "prevent spider session" but does NOT have "links" section....

 

What gives?

 

Please shed some light. Thanks Bear....

 

P.S. I am using this as a

spider check!

[WiseWombat]

I hope this got your attention....

 

Here's the thing:

 

I've had a CVS2.2 MS2 install  for a few years now, then last week while completely redoing the website I decided to put the store in the root directory.

Ok, all went well except now the store is giving SID's to spiders. Not good.

 

Why would changing directories do this? Or is it something else?

 

Could NOT find the problem, so I decided it was time to upgrade to MS2 from CVS. Which has the "Prevent Spider Sessions" thing in the admin. Seemed like a good idea.....

 

Here's the clincher:

 

I installed the version right from OSCommerce's mainpage here.

 

And it does NOT have the "prevent spider sessisons" but it has a new "links" section in the Admin panel which has a "Spider Friendly Links" feature; which is supposed to block spiders from getting sid's I suppose....

 

BUT, it doesn't work!!!!!!! Well, not for me anyways.....

 

SO which version is this? A pre MS3?

 

The real question is:

 

How do I fix this problem?

 

If anyone has any clues please feel free to share your ideas as I am frichen going crazy here....

 

Luke

<{POST_SNAPBACK}>

Try installing the spiders.txt file inside the catalog/includes folder

http://www.oscommerce.com/community/contri.../search,spiders

and install the robot text file into the web root folder.

http://www.oscommerce.com/community/contri...l/search,robots

[Luke99]

Thanks for that robot file, no sense in indexing "forgot_password".....

 

I did update the spiders file, but it did not fix anything.

 

Back to my original 2.2CVS:

 

I just remembered that I added the embed href mod when I redid the site. Could this have cause the SID problem???

[WiseWombat]

Thanks for that robot file, no sense in indexing "forgot_password".....

 

I did update the spiders file, but it did not fix anything.

 

Back to my original 2.2CVS:

 

I just remembered that I added the embed href mod when I redid the site. Could this have cause the SID problem???

<{POST_SNAPBACK}>

If you have access to your server log file you could find which spiders are creating sessions and then add them in to the robots text and also track the IP and find out who they are at http://www.dnsstuff.com/tools/whois.ch?ip=203.56.244.186 example and add them into your spider text file if there not already included.

[Luke99]

Been checking my logs.

It's mostly Yahoo & MSN i'm worried about...

Thanks for that cool DNS link!

[Luke99]

Ok, so I checked everything with Beyond Compare and can't see anything...

 

Everything was fine until I moved to the root, so it's gotta be the configs file....

 

Please someone check these and confirm the new ones at the root are ok.

 

old catalog config:

define('HTTP_SERVER', 'http://website.com'); // eg, http://localhost - should not be empty for productive servers
 define('HTTPS_SERVER', 'http://website.com'); // eg, https://localhost - should not be empty for productive servers
 define('ENABLE_SSL', false); // secure webserver for checkout procedure?
 define('DIR_WS_CATALOG', '/catalog_new/'); // absolute path required
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 define('DIR_WS_DOWNLOAD_PUBLIC', DIR_WS_CATALOG . 'pub/');
 define('DIR_FS_DOCUMENT_ROOT', '/home/username/public_html');
 define('DIR_FS_CATALOG', '/home/username/public_html/catalog_new/');
 define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
 define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

// define our database connection
 define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers
 define('DB_SERVER_USERNAME', 'xxx');
 define('DB_SERVER_PASSWORD', 'xxx');
 define('DB_DATABASE', 'xxx');
 define('USE_PCONNECT', 'false'); // use persistent connections?
 define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'

 define('DIR_WS_SPG_SHIPPING', DIR_WS_MODULES . 'spg_shipping/');

old admin config:

define('HTTP_SERVER', 'http://website.com'); // eg, http://localhost or - https://localhost should not be empty for productive servers
 define('HTTP_CATALOG_SERVER', 'http://website.com');
 define('HTTPS_CATALOG_SERVER', 'http://website.com');
 define('ENABLE_SSL_CATALOG', 'false'); // secure webserver for catalog module
 define('DIR_FS_DOCUMENT_ROOT', '/home/username/public_html'); // where the pages are located on the server
 define('DIR_WS_ADMIN', '/catalog/admin/'); // absolute path required
 define('DIR_FS_ADMIN', '/home/username/public_html/catalog/admin/'); // absolute pate required
 define('DIR_WS_CATALOG', '/catalog/'); // absolute path required
 define('DIR_FS_CATALOG', '/home/username/public_html/catalog/'); // absolute path required
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_CATALOG_IMAGES', DIR_WS_CATALOG . 'images/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
 define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/');
 define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');
 define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');
 define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');
 define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');

// define our database connection
 define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers
 define('DB_SERVER_USERNAME', 'xxx');
 define('DB_SERVER_PASSWORD', 'xxx');
 define('DB_DATABASE', 'xxx');
 define('USE_PCONNECT', 'false'); // use persisstent connections?
 define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'

define('DIR_WS_SPG_SHIPPING', DIR_WS_MODULES . 'spg_shipping/');

 

Now, the new catalog config:

define('HTTP_SERVER', 'http://website.com'); // eg, http://localhost - should not be empty for productive servers
 define('HTTPS_SERVER', 'http://website.com'); // eg, https://localhost - should not be empty for productive servers
 define('ENABLE_SSL', false); // secure webserver for checkout procedure?
 define('DIR_WS_CATALOG', '/'); // absolute path required
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 define('DIR_WS_DOWNLOAD_PUBLIC', DIR_WS_CATALOG . 'pub/');
 define('DIR_FS_DOCUMENT_ROOT', '/home/username/public_html');
 define('DIR_FS_CATALOG', '/home/username/public_html/');
 define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
 define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

// define our database connection
 define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers
 define('DB_SERVER_USERNAME', 'xxx');
 define('DB_SERVER_PASSWORD', 'xxx');
 define('DB_DATABASE', 'xxx');
 define('USE_PCONNECT', 'false'); // use persistent connections?
 define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'

 define('DIR_WS_SPG_SHIPPING', DIR_WS_MODULES . 'spg_shipping/');

New admin config:

define('HTTP_SERVER', 'http://website.com'); // eg, http://localhost or - https://localhost should not be empty for productive servers
 define('HTTP_CATALOG_SERVER', 'http://website.com');
 define('HTTPS_CATALOG_SERVER', 'http://website.com');
 define('ENABLE_SSL_CATALOG', 'false'); // secure webserver for catalog module
 define('DIR_FS_DOCUMENT_ROOT', '/home/username/public_html'); // where the pages are located on the server
 define('DIR_WS_ADMIN', '/admin/'); // absolute path required
 define('DIR_FS_ADMIN', '/home/username/public_html/admin/'); // absolute pate required
 define('DIR_WS_CATALOG', '/'); // absolute path required
 define('DIR_FS_CATALOG', '/home/username/public_html/'); // absolute path required
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_CATALOG_IMAGES', DIR_WS_CATALOG . 'images/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
 define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/');
 define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');
 define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');
 define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');
 define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');

// define our database connection
 define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers
 define('DB_SERVER_USERNAME', 'xxx');
 define('DB_SERVER_PASSWORD', 'xxx');
 define('DB_DATABASE', 'xxx');
 define('USE_PCONNECT', 'false'); // use persisstent connections?
 define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'

define('DIR_WS_SPG_SHIPPING', DIR_WS_MODULES . 'spg_shipping/');

 

When the store was in catalog dir, all was fine....

 

Thanks!

Luke

[wheeloftime]

Ok, so I checked everything with Beyond Compare and can't see anything...

 

Everything was fine until I moved to the root, so it's gotta be the configs file....

 

Please someone check these and confirm the new ones at the root are ok.

 

old catalog config:

define('HTTP_SERVER', 'http://website.com'); // eg, http://localhost - should not be empty for productive servers
 define('HTTPS_SERVER', 'http://website.com'); // eg, https://localhost - should not be empty for productive servers
 define('ENABLE_SSL', false); // secure webserver for checkout procedure?
 define('DIR_WS_CATALOG', '/catalog_new/'); // absolute path required
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 define('DIR_WS_DOWNLOAD_PUBLIC', DIR_WS_CATALOG . 'pub/');
 define('DIR_FS_DOCUMENT_ROOT', '/home/username/public_html');
 define('DIR_FS_CATALOG', '/home/username/public_html/catalog_new/');
 define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
 define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

// define our database connection
 define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers
 define('DB_SERVER_USERNAME', 'xxx');
 define('DB_SERVER_PASSWORD', 'xxx');
 define('DB_DATABASE', 'xxx');
 define('USE_PCONNECT', 'false'); // use persistent connections?
 define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'

 define('DIR_WS_SPG_SHIPPING', DIR_WS_MODULES . 'spg_shipping/');

old admin config:

define('HTTP_SERVER', 'http://website.com'); // eg, http://localhost or - https://localhost should not be empty for productive servers
 define('HTTP_CATALOG_SERVER', 'http://website.com');
 define('HTTPS_CATALOG_SERVER', 'http://website.com');
 define('ENABLE_SSL_CATALOG', 'false'); // secure webserver for catalog module
 define('DIR_FS_DOCUMENT_ROOT', '/home/username/public_html'); // where the pages are located on the server
 define('DIR_WS_ADMIN', '/catalog/admin/'); // absolute path required
 define('DIR_FS_ADMIN', '/home/username/public_html/catalog/admin/'); // absolute pate required
 define('DIR_WS_CATALOG', '/catalog/'); // absolute path required
 define('DIR_FS_CATALOG', '/home/username/public_html/catalog/'); // absolute path required
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_CATALOG_IMAGES', DIR_WS_CATALOG . 'images/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
 define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/');
 define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');
 define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');
 define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');
 define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');

// define our database connection
 define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers
 define('DB_SERVER_USERNAME', 'xxx');
 define('DB_SERVER_PASSWORD', 'xxx');
 define('DB_DATABASE', 'xxx');
 define('USE_PCONNECT', 'false'); // use persisstent connections?
 define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'

define('DIR_WS_SPG_SHIPPING', DIR_WS_MODULES . 'spg_shipping/');

 

Now, the new catalog config:

define('HTTP_SERVER', 'http://website.com'); // eg, http://localhost - should not be empty for productive servers
 define('HTTPS_SERVER', 'http://website.com'); // eg, https://localhost - should not be empty for productive servers
 define('ENABLE_SSL', false); // secure webserver for checkout procedure?
 define('DIR_WS_CATALOG', '/'); // absolute path required
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 define('DIR_WS_DOWNLOAD_PUBLIC', DIR_WS_CATALOG . 'pub/');
 define('DIR_FS_DOCUMENT_ROOT', '/home/username/public_html');
 define('DIR_FS_CATALOG', '/home/username/public_html/');
 define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
 define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

// define our database connection
 define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers
 define('DB_SERVER_USERNAME', 'xxx');
 define('DB_SERVER_PASSWORD', 'xxx');
 define('DB_DATABASE', 'xxx');
 define('USE_PCONNECT', 'false'); // use persistent connections?
 define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'

 define('DIR_WS_SPG_SHIPPING', DIR_WS_MODULES . 'spg_shipping/');

New admin config:

define('HTTP_SERVER', 'http://website.com'); // eg, http://localhost or - https://localhost should not be empty for productive servers
 define('HTTP_CATALOG_SERVER', 'http://website.com');
 define('HTTPS_CATALOG_SERVER', 'http://website.com');
 define('ENABLE_SSL_CATALOG', 'false'); // secure webserver for catalog module
 define('DIR_FS_DOCUMENT_ROOT', '/home/username/public_html'); // where the pages are located on the server
 define('DIR_WS_ADMIN', '/admin/'); // absolute path required
 define('DIR_FS_ADMIN', '/home/username/public_html/admin/'); // absolute pate required
 define('DIR_WS_CATALOG', '/'); // absolute path required
 define('DIR_FS_CATALOG', '/home/username/public_html/'); // absolute path required
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_CATALOG_IMAGES', DIR_WS_CATALOG . 'images/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
 define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/');
 define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');
 define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');
 define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');
 define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');

// define our database connection
 define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers
 define('DB_SERVER_USERNAME', 'xxx');
 define('DB_SERVER_PASSWORD', 'xxx');
 define('DB_DATABASE', 'xxx');
 define('USE_PCONNECT', 'false'); // use persisstent connections?
 define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'

define('DIR_WS_SPG_SHIPPING', DIR_WS_MODULES . 'spg_shipping/');

 

When the store was in catalog dir, all was fine....

 

Thanks!

Luke

<{POST_SNAPBACK}>

 

All I can say on a quick look is you are missing some MS2.2 specific defines in your new catalog configure.php

  define('HTTP_COOKIE_DOMAIN', 'www.yourdomain.com');
 define('HTTPS_COOKIE_DOMAIN', 'www.yourdomain.com');
 define('HTTP_COOKIE_PATH', '/');
 define('HTTPS_COOKIE_PATH', '/');

Missing those cookie specific defines can have severe impact on the SID.

This is for the stock MS2.2, I am not sure if you are talking about that or still your CVS something ?!