Jump to content

captcha in create account form


Recommended Posts

  • 2 weeks later...
  • 2 weeks later...
  • 2 weeks later...
  • 3 months later...

If you are looking for the paid solution then you should give a try to the reCaptcha module with invisible captcha which allows you to add Google reCaptcha protection on various pages including: 

  • Customer Registration Page
  • Customer Login Page
  • Customer Contact Page
  • Customer Forgotten Password Page

https://addons.prestashop.com/en/website-security-access/26035-google-recaptcha.html

Link to comment
Share on other sites

  • 5 years later...

Hi,

Fake accounts on your store could be created to exploit promotions, test vulnerabilities, or waste resources.

To prevent this, enable CAPTCHA on forms, enforce email verification for account activation, monitor logs for suspicious activity (e.g., multiple accounts from the same IP), and block repeat offenders.

Regards.

Link to comment
Share on other sites

Il y a 1 heure, hobart a dit :

Hello

Who waste there own resources in order to waste my resources?

This is what I can not understand.

These are all robots that automatically attack all PrestaShop installations to identify and use vulnerabilities, mainly in third-party modules, so it validates that you're using PrestaShop and then creates a list of affected sites to attack in a different way, using the resources to hack into other sites or to retrieve information about your site if it's of interest, such as e-mail addresses and the like.

Basically, your site is now identified and will be attacked differently the next time for other types of attacks, which is why you need to secure your site as much as possible from the outset.

Link to comment
Share on other sites

21 minutes ago, Mediacom87 said:

These are all robots that automatically attack all PrestaShop installations to identify and use vulnerabilities, mainly in third-party modules, so it validates that you're using PrestaShop and then creates a list of affected sites to attack in a different way, using the resources to hack into other sites or to retrieve information about your site if it's of interest, such as e-mail addresses and the like.

Basically, your site is now identified and will be attacked differently the next time for other types of attacks, which is why you need to secure your site as much as possible from the outset.

Of course robots do this, but they waste resources.

I can not see any vulnerability in create a client accounts. So what? Which is the vulnerability?

What is the real reason to allocate resources to create accounts on other sites??? 

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...