| ||||||||||
![]() |
Shopping cart software Solutions for online shops and malls | |||||||||
![]() |
![]() |
|
X-Cart Home | ![]() |
![]() |
![]() |
![]() |
![]() |
![]() |
Spam through X-Cart | |||
![]() |
|
|
Thread Tools | Search this Thread |
#1
|
|||||||
|
|||||||
![]() Lately we are experiencing a lot of spam coming from Russia through our contact form on the WEB site. It is just few lines with links and also like somebody is selling condo there.
Here, I disabled links: Name: Mariagus Email: fbntnmqce@smajok.ru Subject: online gambling casino online casino <a href="htt*://o*casino24.com/">casino games</a> <a href="htt*://o*casino24.com/">online casino slots</a> cassino Since it is coming in every day I don't think somebody is going to site and sending messages. I am afraid that somebody broke into site and is tied directly through server.
__________________
5.3.2.2 Business License Last edited by qualiteam : 03-14-2018 at 07:37 AM. |
|||||||
#2
|
|||||||||
|
|||||||||
![]() I believe there is a way to enable the free built-in reCaptcha protection for the contact form.
Try to enable it and check if the SPAM stops. If this helps, you may also consider a better version of the function: https://market.x-cart.com/addons/google-recaptcha.html Also, what e-mail client do you use? It makes sense to check the e-mail headers and make sure that it is your server that sends the messages. You can find instructions for GMail here: https://support.google.com/mail/answer/29436?hl=en
__________________
Alex Solovev, Qualiteam --- User manual Video tutorials X-Cart FAQ You are welcome to press "Thanks" button if you find this post useful ![]() Click here to learn how to apply patches X-Cart Extensions |
|||||||||
#3
|
|||||||
|
|||||||
![]() Thanks for answer. Will check header on next spam e-mail.
As for Captcha I went to enable it but it asks for changes to be done to pages and server that we don't know how to implement so won't do it for now.
__________________
5.3.2.2 Business License |
|||||||
#4
|
|||||||
|
|||||||
![]() Just received one and it looks like it was originated from our site cardacc.com
Content-Type: multipart/alternative; boundary="b1_408a5a6306323648dd94734e2285f4ac" Mime-Version: 1.0 X-Get-Message-Sender-Via: viking.ica.net: authenticated_id: cardacc/only user confirmed/virtual account not confirmed Dkim-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=almexltd.com; s=default; h=Content-Type:MIME-Version:Reply-To:Message-ID: From ![]() ![]() ![]() X-Mailer: PHPMailer 5.2.22 (https://github.com/PHPMailer/PHPMailer) X-Source-Dir: cardacc.com:/public_html X-Antiabuse: This header was added to track abuse, please include it with any abuse report X-Antiabuse: Primary Hostname - viking.ica.net X-Antiabuse: Original Domain - almexltd.com X-Antiabuse: Originator/Caller UID/GID - [1034 494] / [47 12] X-Antiabuse: Sender Address Domain - almexltd.com X-Source: X-Authenticated-Sender: viking.ica.net: cardacc X-Php-Script: www.cardacc.com/cart.php for 178.159.37.18 X-Php-Originating-Script: 1034:class.phpmailer.php Received: from viking.ica.net ([209.151.129.171]) by mail7.ica.net (IceWarp 10.4.5) with ESMTP (SSL) id 201803142239423984 for <sales@almexltd.com>; Wed, 14 Mar 2018 22:39:42 -0400 Received: from cardacc by viking.ica.net with local (Exim 4.89_1) (envelope-from <sales@almexltd.com>) id 1ewIny-0007Xh-2F for sales@almexltd.com; Wed, 14 Mar 2018 22:39:46 -0400 <408a5a6306323648dd94734e2285f4ac@www.cardacc.c om> X-Source-Args: /usr/sbin/httpd -k start
__________________
5.3.2.2 Business License |
|||||||
#5
|
|||||||
|
|||||||
![]() We are having the same issue. There are TONS of these emails. I'd be happy to just turn off the Contact Us page to be honest but in version 4.xxx I don't think I can.
__________________
X-Cart version 4.0.13 (unix) |
|||||||
#6
|
|||||||
|
|||||||
![]() That is exactly what we had to do, turned off contact page and that is a shame
__________________
5.3.2.2 Business License |
|||||||
#7
|
|||||||
|
|||||||
![]() Quote:
Hi groovedis. You're in a X-Cart 5 post. Please see this X-Cart 4 post https://forum.x-cart.com/showthread.php?t=74978
__________________
X-Cart GoldPlus v4.7.12 | reBOOT (reDUX) Template v4.7.12.9 | Always The Best |
|||||||
#8
|
|||||||||
|
|||||||||
![]() Yes, the e-mail seems to be sent by your server.
Enabling reCaptcha on the contact form should help. Quote:
What changes do you mean? Please check this article: https://kb.x-cart.com/look_and_feel/enabling_the_contact_us_form.html You just need to sign up on the reCaptcha site any copy your reCAPTCHA Public key and Private key from there over to your X-Cart settings.
__________________
Alex Solovev, Qualiteam --- User manual Video tutorials X-Cart FAQ You are welcome to press "Thanks" button if you find this post useful ![]() Click here to learn how to apply patches X-Cart Extensions |
|||||||||
#9
|
|||||||
|
|||||||
![]() It is not as simple as you say:
https://www.dropbox.com/s/20llqyrr479lg8f/Screen%20Shot%202018-03-27%20at%209.33.57%20AM.png?dl=0, it still needs few more entries
__________________
5.3.2.2 Business License |
|||||||
#10
|
|||||||
|
|||||||
![]() Quote:
The google account setup / data that's required etc isn't an XC issue, that's something that's within your own area of control / administration. We have reCAPTCHA enabled on the Contact Us page on both live and all of our dev stores and it works very well on all of them. They are all independent Google data sets FWIW. In addition, if you have sufficient access on your own server, tech knowledge etc, there are many actions that you can easily invoke to minimise spam, including the one you mentioned initially i.e. mimicking your own server / domain as the spam sender. If you don't, your hosting provide should / will. Again this is something that's within your own area of control / administration not XC.
__________________
Dev Store & Live Store XC Business 5.4.1.35 Server; Ubuntu 22.04.2 LTS (HWE 6.2.0.26.26 Kernel)) / Plesk Obsidian Nginx 1.20.4 / Apache 2.4.52 (Ubuntu Backported) / MariaDB 10.11.4 / PHP 7.4.33 |
|||||||
|
|||
X-Cart forums © 2001-2020
|