Author: dx3
-
MAGENTO PATCH NOVEMBER 2017
Magento has released new versions of Magento Commerce and Magento Open Source to increase product security: Magento Commerce 1.14.3.7 Magento Open Source 1.9.3.7 SUPEE-10415 (patch for earlier Magento 1.x versions) These releases contain multiple security changes that help close cross-site scripting and authenticated Admin user remote code execution vulnerabilities. We […]
-
SUPEE-10266 : MAGENTO SECURITY PATCH
SUPEE-10266, Magento Commerce 1.4.3.6 and Open Source 1.9.3.6 contain multiple security enhancements that help close cross-site request forgery (CSRF), unauthorized data leak, and authenticated Admin user remote code execution vulnerabilities. As always raise a ticket and we will apply the patch Full details here: https://magento.com/security/patches/supee-10266
-
INSTALLING A 3RD PARTY SSL
If you opt to purchase a 3rd party ssl you will need to install this yourself in Plesk. 1) Step one is to raise / generate your CSR. Log into Plesk and from Websites and domains select SSL/TLS Certificates Select Add SSL/TLS certificate Give the SSL a title eg ev2017 Complete the information accurately. This will be encoded into your […]
-
2016 REVIEW
2016 was a great year for Dx3webs and our customers. We continued our trend of 50% growth year on year and we are investing this in our platform, R&D and customers services. We have continued to expand across Europe and the US. We were particularly pleased to win over North40.com against stiff competition from large […]
-
THE MAGIC OF “UPGRADE-INSECURE-REQUESTS”
We have been encouraging all store owners to move to https over the last year or so. An ssl certificate with warranty can be had for as little as £39.99 per year or even a Let’s Encrypt non-warranty ssl for free. So there is no excuse for not serving all pages over https. Magento has two base […]
-
SCAM EMAILS TARGETTING ECOMMERCE SITE OWNERS
A number of store owners are reporting being hit by a wave of scam emails all designed to convince the store owner that they have taken money from a customer. The emails are all similar claiming that they have been charged a number of times by the store or have been charged without receiving goods. […]
-
ACCESS IS LOCKED. PLEASE TRY AGAIN IN A FEW MINUTES
As of Magneto 1.9.3 magento have finally added brute force protection to the downloader folder. As you may be aware even if you have changed your default admin path ie to anything other that /admin Magento connection is still accessible at yourdomain.com/downloader. The fix for this is to rename your downloader folder or move it […]
-
SUPEE-8788 CRITICAL SECURITY PATCH NOW AVAILABLE FOR M1
UPDATE: Pathces for magento versions prior to 1.9 have been pulled for now and will be re-released in the next couple of days. SUPEE-8788, Enterprise Edition 1.14.3 and Community Edition 1.9.3 address Zend framework and payment vulnerabilities, ensure sessions are invalidated after a user logs out, and make several other security enhancements that are detailed […]
-
GOOGLE CONTINUES ITS PUSH TO FULL ENCRYPTION
Many clients have been in touch wondering what the new means in the latest version of Chrome browser. Once clicked Chrome tells the user that “Your connection to this site is not Secure”. For an e-commerce site owner and to shoppers this message, which is meant to be neutral, sounds like a warning. This is all […]
-
PHP 7 SPEED BOOST FOR FREE
Site speed is important. It is one of our key mantras.. Speed, security, stability. The faster your site loads the more money you make. It is one of the reasons we as a company exist. After years of development we can tweak sites / servers to run faster than our competitors. To this end we […]