TomatoCart - New Generation Open Source eCommerce

I see that their is one that he/she all the time on my site and I didn't even finished working on the site, So there is absolutely nothing to hang around all the time and also I can see the same one have 4 of the same one on my site and I am afraid that he can damage or do something bad to my site, Is there a way to know? and to see about that ?, How can I make sure that my web site will be secure from attack??

Thanks

It's not that hard. I use subdomains on my site. For example if I have public site example.com/
I installed tomatocart to test.example.com/ and testing there. You can also install tomatocart to one domain to multiple folders and run install and select different prefix for tables so you can have more different stores in one place.
And about security it's simple. Select long strong password for access to administration, don't tell it to anyone, don't tell anyone your userid for administration and if you want keep everyone from your store just don't tell to anyone url to store
On front end where customer has access, this people can't do any harm and you can disable store in administration as well.
In administration someone can delete your data but not without userid and password. Also you have in administration options to delete customers, remove their accounts or change their passwords.
There is already file robots.txt in installation of tomatocart so this should keep off your store (or at least off important parts of store like admin folder) crawling search spiders from google and other search engines. You may always edit this file to improve control over spiders but I bet it's unnecessary. Btw those spiders don't bite so you don't have to be afraid of them

Thank you very much.

This is interesting, how do yo do that : "You can also install tomatocart to one domain to multiple folders and run install and select different prefix for tables so you can have more different stores in one place." ?

Well, assuming you know how to install tomatocart it should be very simple. You have web site for example example.com you have installation files for tomatocart, you will go to ftp of your site you create there folders let say test1 and test2 then you copy full installation to test1 folder and then copy it again to test2 folder. Now you are almost ready, you open explorer you go to url address example.com/test1/ this will start installation of tomato cart to folder test1 you will install it you will set database and installation wizard will ask you for Database Table Prefix The prefix to use for the database tables. For example you will set this to tomato1_ and continue to end of installation. Now you have store in example.com/test1/ and administration in example.com/test1/admin/ in database you will have store tables which will all start with prefix tomato1_
Now to set store 2 you wil go to url example.com/test2/ start installation and do all same like before for store 1 except when you will be asked for table prefix you must set something different for example tomato2_ when you will finish installation you will have 2 different stores each with own administration one will be at example.com/test1 and other store will be at example.com/test2
You can of course make folders with any name, not just test1 or test2 what prefix in database you will set doesn't matter as long as there will be no spaces or some special characters just stay with A-Z 0-9 and under score _ To make sure I am correct I just done it all now so I could easly describe how to make it.
Btw right now in last version when you navigate in store there are links on top of screen Top » Online Shop
second link will take you to directory of your actual store so if you will be in test2 second link Online Shop will be like example.com/test2/index.php that's ok but first link in navigation Top will take you to root of website it mean to example.com/ and because you have in this root only folder test1 and folder test2 this can lead to something bad. You can always put into root of web some index.php or index.html with links to store 1 and store 2.
I seen in code repository this first link 'Top' leading to root of website will be removed.

Acutally security is really a important issue faced by shop owner. In the shopping system probably you will have security hole in the application level and web server level.

The application level means the shopping system itself. These security holes are caused by the source code. The web server is the server that run the shopping software, these security holes are caused by wrong directory right.

We will try our best to write security code, but in case a security hole is found in our system we will make a patch immediate and store owner have to install the patch as soon as possible to prevent from attack.

Concerning the web server security issue, always don’t give too much right on the directoy.

If you are worry about the possible attack to your administration panel, you can rename you admin directory to a long name such as “admin38429jhfk29jjddhjhs” so that attacker can not find your admin folder. And if you rename your admin folder, please change the DIR_FS_ADMIN constant in the configuration file too.