PDA

View Full Version : ocSsid Fix - Google & E-mail work aroung



michael_s
12-10-2007, 06:30 AM
Okay so if you've ever made the mistake like I have of not activating the 'prevent spiders sessions' you could well
find google (and other) search engines have now indexed your site with the osCsid appended at the end.

This will cause you lots of problems, not least security issues. Problem I saw were people altering each others baskets
and people ordering on other peoples accounts.

This contribution also gets around people e-mailing links to friends and using the senders session.

Oscommerce does try to get around this by sending them to the login page, but this really isn't much help as the customer
doesn?t see the product they clicked the link to see, plus they then have to try to find the product. Not much help.

HINT: If your really new to editing php files, use Notepad++ (google it), it helps with the syntax and line numbers.

This is a very quick and easy fix.


More... (http://addons.oscommerce.com/info/5607)