Please help us to make AbanteCart Ideal Open Source Ecommerce Solution for everyone.

Support AbanteCart eCommerce

Author Topic: Issue with credit card brute force  (Read 1234 times)

Offline mgcby2001

  • Newbie
  • *
  • Posts: 6
  • Karma: +0/-0
    • View Profile
Issue with credit card brute force
« on: March 04, 2021, 05:49:29 PM »
Someone just use my website to brute force cardconnect. Now, cardconnect requires me to have Captcha in the payment form.
Also, they require me to lock down the user if there are 3 failed payment or so on.

How to do that?

Offline abolabo

  • core-developer
  • Administrator
  • Hero Member
  • *****
  • Posts: 1966
  • Karma: +300/-12
  • web for all, all for web!
    • View Profile
    • AbanteCart
Re: Issue with credit card brute force
« Reply #1 on: March 05, 2021, 03:18:04 AM »
what version of abantecart do you use?
“No one is useless in this world who lightens the burdens of another.”
― Charles Dickens

Offline Basara

  • Administrator
  • Hero Member
  • *****
  • Posts: 5007
  • Karma: +257/-2
    • View Profile
Re: Issue with credit card brute force
« Reply #2 on: March 05, 2021, 06:29:01 AM »
Hello.
Disable Guest checkout in the AbanteCart settings. You can enable the reCaptcha for customer registration form

Offline maxter

  • Full Member
  • ***
  • Posts: 219
  • Karma: +64/-0
    • View Profile
Re: Issue with credit card brute force
« Reply #3 on: March 05, 2021, 09:13:56 AM »
The easiest solution is to block guest checkout. If you still want a guest checkout, you would need to program Captcha into the process. This requires some coding skills.

Also, you can change the payment provider to Stripe, for instance. I think they have better way of handling this.

Offline mgcby2001

  • Newbie
  • *
  • Posts: 6
  • Karma: +0/-0
    • View Profile
Re: Issue with credit card brute force
« Reply #4 on: March 07, 2021, 10:15:11 AM »
1.2.16

Offline mgcby2001

  • Newbie
  • *
  • Posts: 6
  • Karma: +0/-0
    • View Profile
Re: Issue with credit card brute force
« Reply #5 on: March 07, 2021, 10:16:25 AM »
I disabled the guest check out. However, the credit card processor requires Captcha in the check out as requirement for now.

 

Powered by SMFPacks Social Login Mod