> how good is the encryption that the built in cf function use? > Its alright, but its only as secure as your server as you have to keep the encryption/decryption key on the server.
> good enough for cc's > Definately not... Look at something like pgp for encrypting credit card numbers, where you have a public and private key pair and the key that you need to decrypt the cc numbers is not kept on the server. > passwords? > ~shrug~ I suppose you could, but probably better to use hash() as its a one way encryption algorithm. Regards Stephen ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Signup for the Fusion Authority news alert and keep up with the latest news in ColdFusion and related topics. http://www.fusionauthority.com/signup.cfm
