rgvsean Posted October 9, 2005 Share Posted October 9, 2005 The resource cannot be displayed The resource you are looking for cannot be opened by your browser. -------------------------------------------------------------------------------- Please try the following: Click the Back button to try another link. Click Search to look for information on the Internet. HTTP Error 406 - Not acceptable Internet Explorer I get this page when I am in payment modules and try to select CREDIT CARD. I'd like to remove credit card collection altogether and let pay-pal and then hopefully world-pay do all that. Thanks for any help. Link to comment Share on other sites More sharing options...
rgvsean Posted October 10, 2005 Author Share Posted October 10, 2005 As no-one seems to know I'll update as I go in case it's of use in the future. The error is to do with the server picking up someting in the URL that it doesn't like, it's an anti-hacking measure. I have my company looking into it and we'll see what they say. Link to comment Share on other sites More sharing options...
rgvsean Posted October 10, 2005 Author Share Posted October 10, 2005 The problem is within the URL which is called for the credit card module... admin/modules.php?set=payment&module=cc The 'cc ' at the end is being picked up by mod_security as it's also the linux command to run the compiler. If we allowed this, it's possible that a hacker could compile or recompile programs by entering a specifically coded URL. Unfortunately this clashes with os-commerce. As the credit card module is disabled, you don't really need to click on credit card. If you really wanted to run it, this is possible by making sure that the 'cc' doesn't have any space after it. For example, adding a dummy variable will allow this... admin/modules.php?set=payment&module=cc&dummy=1 So if I remove this credit card module will it make the credit card boxes, for the cutomer to fill in, "go away" ?? Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.