Magento

Magento Forum

How secure is Magento?

mikeforbobmane Total Posts: 101 Joined: 2011-02-03 Ignore user	@ JT OK then how do you explain my issue? i have Fontis reCAPTCHA installed and it has been double checked by another (reputable) developer to be working. but i keep getting fake customer registrations - about 2 or 3 a day. they are like this: 452 sesBesIdete sesBesIdeteVQ v.e.ronikalikes@gmail.com 451 Monicarj MonicazcGF Gutermuth@daolemi.com 450 Reennadix ReennadixZB aldenrivas24@yahoo.co.uk 449 Ommett24 Hmmett67OM Demoura@daolemi.com the developer says it must be a security hole in an extension (he fixed one hole in one extension already). so how do we find out which extensions have the hole (other than turning them off and on) . inst there some app or tool that can be run to find holes? any way to stop this?
	Posted: February 11 2012 \| top \| # 16

kab8609 Total Posts: 708 Joined: 2009-04-07 Cleveland Ignore user	Its a ever changing process. Something may work today, but hackers spend some time and find a new way to do it. Why don’t you check their IP address. See if it is the same or very similar. You could block those IP addresses in your .htaccess file. Signature Kris Brown Magento Certified Developer I work at Briteskies, a Magento Solutions Partner. Magento CE Sites Built to Date for Clients: 26 Magento EE Sites Built to Date for Clients: 5 Magento Extensions Built to Date for Clients: 13 Don’t edit core code...
	Posted: February 14 2012 \| top \| # 17