insecure shopping cart installation |
Post Reply |
Author | |
Chezbloom
Newbie Joined: 15 August 2010 Location: Minneapolis Status: Offline Points: 2 |
Post Options
Thanks(0)
Posted: 11 July 2011 at 2:29pm |
Hi this is my first time posting. I got a message from my website host saying the following:
Our system administration team has detected an outdated and insecure shopping cart installation in your account. This makes your site vulnerable to remote attackers, possibly allowing them to upload and execute software scripts that can redirect funds, inject advertisements and engage in "phishing" scams using your site. The simplest way to reduce the chance of these attacks is to secure your shopping cart's "admin" folder with a user name and password, preventing access by anyone except you. We highly recommend that you do this immediately, but as a precautionary measure, after 24 hours we will take steps to password protect and secure your cart's admin area and send you the password via e-mail. We also highly recommended that you keep your shopping cart software up-to-date by checking for and installing software updates, since these updates often fix security issues. I was under the impression Roman Cart was secure and I do sign in. So should I be freaking out over here?!! |
|
Dave P
RomanCart Guru Joined: 15 February 2004 Location: United Kingdom Status: Offline Points: 4066 |
Post Options
Thanks(0)
|
Hi,
Your website host appears to be an idiot. There is no Romancart software hosted on your website or on your webserver. Romancart is a hosted cart, which means it's hosted on 3rd party servers and is secure. The other possibility is that you have another shopping cart which is hosted on your site and which you've forgotten about, and that it is insecure; in which case you should remove it. It's easy enough to check what you have on your website server so start by having a look to see what's there. Hope this helps. |
|
Chezbloom
Newbie Joined: 15 August 2010 Location: Minneapolis Status: Offline Points: 2 |
Post Options
Thanks(0)
|
Dave P, you are correct sir! I finally figured it out, I had at one time attempted to install Zen cart and that must be why I (and many others) received that email from my website host. Not being very astute at this stuff, I jumped the gun a bit. Thanks for the response.
|
|
Post Reply | |
Tweet
|
Forum Jump | Forum Permissions You cannot post new topics in this forum You cannot reply to topics in this forum You cannot delete your posts in this forum You cannot edit your posts in this forum You cannot create polls in this forum You cannot vote in polls in this forum |