[ic] CC Encryption

[Dan]

Since you have obviously thought about the reasons behind not passing CC
info in the plain and have chosen to ignore them. I'm just going to toss
this in the ring. I have no idea how secure it would be...

I suggest putting the order into PDF format prior to mailing it. Almost
everyone has Acrobat and you might even be able to password protect the
file.

Someone please correct me if I am wrong, but wouldn't this reduce the
chance of someone easily picking the CC number out of an email?

-dan
see CPAN for modules

On Tue, 2002-06-11 at 20:42, Michael Baird wrote:
> Yes, but putting a wrapper around it and having it do nasty things is quite 
> easily done you see, since the interchange cgi handles the actual encryption 
> of the card, in reality sending the credit card info over the internet is 
> dangerous business period. Obviously no one wants to be insecure, however I 
> wasn't requesting that this be the defacto standard just as an option, as it 
> was apparently earlier in the history of Interchange/Minivend. As I said 
> earlier, I don't need the reasons why it's evil and the like as I stated, if 
> you don't know how to do it that's fine, say you don't know, or propose a 
> better way of handling this, I'm all for it, but requiring the customers to 
> install PGP (if possible) is a sure way to stop this cart from being adopted 
> by all but the most hardcore geeks (who probably wouldn't need a canned 
> shopping cart in the first place). Thanks to those who proposed some 
> constructive solutions and know the realities of dealing with the public.
>