18 Sep

Holding customers at bay with a Magento queuing system

We're rapidly approaching peak season again and traffic scaling is once again at the top of all Magento store's checklists. There's three ways to help a Magento store cope with high levels of traffic, Add additional hardware (like overflow servers) Optimise Magento store code to perform better Restrict the number of users on the site … Continue reading

15 Sep

Patching SUPEE-10366

SUPEE-10336 is minor update for Magento to address changes in USPS. Where to download Its best downloading the patch from the Magento.com download section - or via MDA - the Magento download tool (this is what this guide will use). Dependencies SUPEE-6237 SUPEE-7616 Applying the patch The application of this patch is relatively straightforward. I'd … Continue reading

15 Sep

Patching SUPEE-10266

SUPEE-10266 is an important security update for Magento to address remote code execution and SQL injection vulnerabilities. Where to download Its best downloading the patch from the Magento.com download section - or via MDA - the Magento download tool (this is what this guide will use). Dependencies SUPEE-9767 Applying the patch The application of this … Continue reading

25 Aug

Combating SPAM user registration on Magento

Table of ContentsIdentifying the attack Traffic by status code Traffic by IP Traffic by user agent Traffic by country code Traffic by URI Enable CAPTCHA Blocking by IP Blocking by User Agent Blocking by Country Code Rate limiting requests Cleaning up created usersThere has been a recent resurgence of Magento SPAM user registrations, often predominantly … Continue reading

13 Jul

Using Magento command line download tool

Magento provides downloads at https://magento.com/tech-resources/download - but this resource is both protected by a login wall and not possible to be accessed by command line. A frequent task of any Magento store owner is to be able to quickly and confidently download resources from Magento direct to their store. So that's why we wrote MDA … Continue reading

1 Jun

Patching SUPEE-9767

SUPEE-9767 is an important security update for Magento to address remote code execution and SQL injection vulnerabilities. Magento received reports that customer registration after checkout might fail if option to 'Enable Form Key Validation On Checkout' is enabled. This results in customers not being registered, but checking out as guests. Magento is working on updated … Continue reading