Started with being unable to create a user

Hi, my issues started when I wanted to register a user in the frontend. Failed with error "Data too long for column 'ip' at row 1"
Disabled Spamprotection, then it worked.

Thought to reinstall all the securitycheck plugins to see if that solves anything but when uninstalling I get "There has been an error when creating database tables. Securitycheck Web Firewall plugin has been disabled."  Uninstalling the component was successful. Error uninstalling.
I could reinstall again without errors but still see the Data too long for column 'ip' at row 1 and uninstalling still gives an error message

Any ideas ? This is J43.1 recently updated from j3
Also noticed that even if I had the securitycheck plugin installed for a few days, I see no log entries at all which is uncommon at least.
Regards, Kai

 

Hi Kai,

Thank you very much for your confidence in my extensions.

It seems there is an issue adding the IP to the database when you tried to create the user. This usually happens because the spam protection plugin checks, by default, the username (in addition to other fields like the email and IP). This could cause false positives. I recommend you to remove this setting if you have problems creating users.

Regarding to the uninstall message, I will check the entire process.

To test if the firewall is working fine you can do some tests:  scpdocs.securitycheckextensions.com/troubleshooting/it_works
However, we shouldn't forget that the free plugin is a medium protection suite and detects fewer types of attack than the Pro version.

Regards,
Jose

Okay, I replied earlier but the forum had an issue,

I tried looking into this. First I am not sure what you meant by disabling "this" setting. What is "this" in my case ?
Anyway, I tried your test and noticed that I do not get an log entry but again seeing ""Data too long for column 'ip' at row 1"
I played around and found out that in db securitycheck_logs there is a field "ip" with varchar(35). Given that IPv6 is these days default this is for sure not long enough.
I modified it to varchar(255) and now your test works and I get log entries again.
But I still get the database error when uninstalling.

btw doing your test I noticed that the error message "It has been detected a sequence that could mean a hacker attack. Your request can not be processed." is grammatically not correct. Correct would be something like "A sequence has been discovered that could indicate a hacker attack" (at least in englisch).
Hope both findings help you make a better product.
Kai




 

Hi Kai,

I tried looking into this. First I am not sure what you meant by disabling "this" setting. What is "this" in my case ?

I mean removing "username" from the settings of the spam protection plugin.

I played around and found out that in db securitycheck_logs there is a field "ip" with varchar(35). Given that IPv6 is these days default this is for sure not long enough.

Yes, you're right. It's supposed that I changed this many versions ago. I will check if for some reason I reverted this change in one of my updates.

btw doing your test I noticed that the error message "It has been detected a sequence that could mean a hacker attack. Your request can not be processed." is grammatically not correct. Correct would be something like "A sequence has been discovered that could indicate a hacker attack" (at least in englisch).

Thank you very much for reporting this. I will change it in the next version. I plan to publish a new release soon (in a couple of weeks or so). 

Regards,
Jose

 

I tried to find that username setting but failed. I was not even able to find anything specific to the spam protection plugin. Can you direct me ?
And my change to varchar(255) might be also too much. varchar(40) "should" be enough in theory for a single IPv6 address.
And still curious where the uninstall error message comes from. Let me know if I should test anything.

Kai