Menu

Topic-icon all customers referred back from paypal getting error page

  • funnybugbees
  • funnybugbees's Avatar Topic Author
  • Offline
  • Fresh Boarder
  • Fresh Boarder
More
8 months 1 week ago - 8 months 1 week ago #5639 by funnybugbees
Customers who order through our website using the Paypal plugin, are able to pay, but when sent back to our website from PayPal they get the custom message from admin saying they are blocked due to hacking attempts.

How do we resolve this as people are paying but since the PayPal IPN notification never reaches us, our system marks the transaction as canceled. Can we add a URL to the ignore list somehow, a wildcard like *.paypal.com/*

We are also losing a lot of sales due to actual product names, for isntance these are all valid sales and are in the firewall log and blocking customers from purchasing: keep in mind that (select, frame, body) are actual product names as in "8-frame select grade hive body"

174.213.16.204 Country: United States | Continent: North America (edited out)@gmail.com 4/9/2018 10:03 Forbidden words in pattern select body frame Second Level Protection /index.php?option=com_eshop&view=checkout&layout=complete com_eshop No QXNzZW1ibGVkIDgtZnJhbWUgRGVlcCBIaXZlIEJvZHkgKFNlbGVjdCBHcmFkZSk=

173.0.81.1 Country: United States | Continent: North America 4/9/2018 10:03 Forbidden words in pattern select body frame Second Level Protection /index.php?option=com_eshop&task=checkout.verifyPayment&payment_method=os_paypal com_eshop No QXNzZW1ibGVkIDgtZnJhbWUgRGVlcCBIaXZlIEJvZHkgKFNlbGVjdCBHcmFkZSk=

173.0.81.1 Country: United States | Continent: North America --- 4/9/2018 10:08 IP blocked dynamically Access attempt IP in dynamic blacklist /index.php?option=com_eshop&task=checkout.verifyPayment&payment_method=os_paypal --- No Tm90IGFwcGxpY2FibGU=

173.0.81.1 Country: United States | Continent: North America 4/9/2018 10:24 Forbidden words in pattern select body frame Second Level Protection /index.php?option=com_eshop&task=checkout.verifyPayment&payment_method=os_paypal com_eshop No QXNzZW1ibGVkIDgtZnJhbWUgRGVlcCBIaXZlIEJvZHkgKFNlbGVjdCBHcmFkZSk=

Clifton Murphy - Owner
Funny Bug Bees And Wood Works
Last edit: 8 months 1 week ago by funnybugbees.

Please Log in or Create an account to join the conversation.

More
8 months 1 week ago #5640 by Jose
Hi Clifton,

Just add com_eshop as exception to the Second level protection filter (Global configuration -> WAF configiguration -> Filter Exceptions -> Second level filter tab). Also it's a good idea enabling the 'Easy config' feature (you can find it in main panel of Securitcheck Pro). This will disable plugins that require more attention to avoid false positives keeping a good level of security.

Regards,
Jose

Please Log in or Create an account to join the conversation.

  • funnybugbees
  • funnybugbees's Avatar Topic Author
  • Offline
  • Fresh Boarder
  • Fresh Boarder
More
8 months 1 week ago #5641 by funnybugbees
I am using easy config. So to verify, i just add "com_eshop" to the filter? thats it, nothing more?

Clifton Murphy - Owner
Funny Bug Bees And Wood Works

Please Log in or Create an account to join the conversation.

More
8 months 1 week ago #5642 by Jose
Yes, that's it.

Regards,
Jose

Please Log in or Create an account to join the conversation.

Time to create page: 0.078 seconds
Powered by Kunena Forum

Login or Sign In