Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Where to find/put what.


mimeini

Recommended Posts

Posted

I am trying to secure my website after a mail-ware/code insert attack with the programs mentioned in

 

http://www.oscommerce.com/forums/topic/313323-how-to-secure-your-site/

 

And in contention to that I have questions to two packages:

 

first: IP Trap by fimble

 

he talks about a whitlist. A list with the banned ip addresses. Where is that list located? can't find it. Should i make one?

 

then: XSS_shield

 

># 1) add these lines to your .htaccess file

Assuming that he means the .htaccess file in the catalog directory?

 

># 2) create an index_error.php file with whatever content you want to be displayed.

 

where should I create this file?

 

hop someone can help with this tree questions

 

Thanks

Mikkel

Posted

he talks about a whitlist. A list with the banned ip addresses. Where is that list located? can't find it. Should i make one?

 

IP Trap will create the list as IP's are added

 

># 1) add these lines to your .htaccess file

Assuming that he means the .htaccess file in the catalog directory?

 

Yes, in the catalog directory.

 

># 2) create an index_error.php file with whatever content you want to be displayed.

 

Yes, this file you create

 

 

Chris

Posted

The whitelist is not the same as the IP_Trapped list.

IP_Trapped list contains a collection of IP numbers that have been banned

White list contains a list of IP numbers you do not want to be banned if they stumble on the Trap, in reality they should not as the robots.txt will tell them not to go there.

Both files reside in the folder called banned, the IP_Trapped.txt will be written to by the script, the whitelist.txt you need to add IP numbers to your self

Nic

Sometimes you're the dog and sometimes the lamp post

[/url]

My Contributions

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...