Follow us on Twitter X-Cart on Facebook Wiki
Shopping cart software Solutions for online shops and malls

X-Cart 4.0.16 released

 
Reply
   X-Cart forums > News and Announcements
 
Thread Tools
  #11  
Old 10-11-2005, 10:00 PM
  Dongan's Avatar 
Dongan Dongan is offline
 

X-Wizard
  
Join Date: Jul 2005
Location: www.mercuryminds.com
Posts: 1,531
 

Default Re: What is a version of my X-cart?

Quote:
Originally Posted by neonrider
How do I check a version of my X-Cart?

You can check it out at

Login into admin panel

Administration -> Summary -> Environmental Info
Reply With Quote
  #12  
Old 10-12-2005, 04:34 AM
  kpayne's Avatar 
kpayne kpayne is offline
 

X-Adept
  
Join Date: Dec 2002
Location: Firetanksoftware.com
Posts: 469
 

Default

The enhanced SQL logging will come in handy. Now you can check for malicious activity (sql injection attempts) and have enough information to track down who's trying to do it.
__________________
X-cart Featured Products Manager from http://www.firetanksoftware.com - Put your products where you want, how you want.
Reply With Quote
  #13  
Old 10-12-2005, 07:37 AM
  neonrider's Avatar 
neonrider neonrider is online now
 

X-Adept
  
Join Date: Oct 2005
Posts: 747
 

Default Thanks

Thanks, now I posted my X-cart version in my signature. By the way - what is "enhanced SQL logging" and where is it found? Thanks.
__________________
X-Cart Gold - 4.7.12
Reply With Quote
  #14  
Old 10-13-2005, 04:32 AM
  kpayne's Avatar 
kpayne kpayne is offline
 

X-Adept
  
Join Date: Dec 2002
Location: Firetanksoftware.com
Posts: 469
 

Default

The enhanced sql logging is mentioned above and it logs to the x-errors_sql.log file. When there is an SQL error they log the sql, the response from the sql interpreter (mysql), a backtrace of how the error happened, and now they log the query string and the IP address of the user who caused the error. If you examine your log and you see something like:

login.php?username=master&password=abc' OR password = '

You can probably guess that someone is attempting some sql injection attacks to break into your site (no the above will not work on x-cart). But now you have proof and their IP address. If you wish to contact their ISP about it, you have logs to present. If someone does break in, then you definitely want these logs for prosecutorial purposes.

We got hacked once at a place I used to work and we just turned the server logs right over to the FBI. I don't know what ever came of it, though, as I wasn't in the IT department at the time, but I know the importance of logs
__________________
X-cart Featured Products Manager from http://www.firetanksoftware.com - Put your products where you want, how you want.
Reply With Quote
Reply
   X-Cart forums > News and Announcements


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -8. The time now is 12:13 PM.

   

 
X-Cart forums © 2001-2020