Categories
Archives
- May 2012 (5)
- April 2012 (4)
- March 2012 (5)
- February 2012 (6)
- January 2012 (6)
- December 2011 (3)
- November 2011 (4)
- October 2011 (5)
- September 2011 (5)
- August 2011 (7)
- July 2011 (5)
- June 2011 (6)
- May 2011 (6)
- April 2011 (5)
- March 2011 (7)
- February 2011 (3)
- January 2011 (4)
- December 2010 (5)
- November 2010 (6)
- October 2010 (4)
- September 2010 (1)
- March 2010 (2)
- May 2009 (1)
- April 2009 (2)
- November 2008 (2)
- August 2008 (1)
- July 2008 (1)
Monthly Archives: April 2011
Nexcess Announces UK Magento Hosting Services
Ann Arbor, Michigan U.S.A., April 27, 2011- Nexcess, a Magento Enterprise Hosting Partner, has announced expansion into the UK Magento hosting market. This effort has been designed to better serve the company’s current and future eCommerce hosting clients by providing … Continue reading
Useful Apache Rewrite Rules
Apache’s rewrite engine is very powerful and often misunderstood. It can be fairly cryptic to work with and given that a mistake can take down your site it can be costly to debug. While I’ve tested the following rules thoroughly … Continue reading
Posted in Apache
Tagged .htaccess, Apache, HTTP, HTTP_HOST, rewrite, RewriteCond, RewriteEngine, status codes
4 Comments
Logging Database Queries in Magento
In previous weeks, we’ve covered some debugging tools for both MySQL and PHP that can be very helpful in troubleshooting problems with your LAMP-based web applications. However, there is a little known feature in the Varien library installed with Magento … Continue reading
Posted in Magento
Tagged database, debugging, magento, mySQL, performance, Varien, [php]protected
2 Comments
Avoid Common Password Pitfalls by Getting Creative
Here at Nexcess, we deal with lots of passwords. Passwords for SSH, passwords for e-mail, passwords for intranet sites, passwords for VPNs. We have passwords that fall within the client realm things like webmail, control panels, e-mail, FTP…the list goes … Continue reading
Magento Catalog Search XSS on Some Themes
We’ve seen a few customers failing PCI scans due to Cross Site Scripting (XSS) vulnerabilities on the catalogsearch page. Initially it seemed like it was a bug in Magento where it wasn’t sanitizing its input but when we tried to … Continue reading
Posted in Magento, php
Tagged catalogsearch, crumbInfo, htmlEscape, magento, PCI, theme, xss
5 Comments
