Matt Thanks for the info, Looks straight forward enough but let me see it I understand,
I use the certificate to secure the browsers, After I install the certificate on my server I then call the page out in my code using https://www.site.com/dir/page_name.cfm I should get a pad lock on my browsers. On storing the information, I need to store the information in my table after I have passed the text field through the cfx tag which will return a encrypted text variable. I then store that value and the private key to my table, Then any time I need the data I run it back through the cfx_text tag with the private password or do I create new keys? Am a little confused on how the public and private keys work and how to call the data up at a later date. Thanks for help David ----- Original Message ----- From: "Matt Robertson" <[EMAIL PROTECTED]> To: "CF-Talk" <[EMAIL PROTECTED]> Sent: Tuesday, February 04, 2003 2:32 PM Subject: Re: encryption on personal information > Here are some links: > > http://rackshack.net. Buy a Geotrust secure certificate easy and cheap (US$49). > > http://developer.perthweb.com.au. Look at the textcrypt utility. This is actually some serious encryption that is nice and cheap (US$39). Costs a bundle ($10k+) if bought from mainstream commercial sources. > > You can get some encryption algorithms on the devex for free. Check there, but for me textcrypt is solid stuff, cheap and easy. > > To make a form secure you first call the page using https instead of http(after you've installed and enabled the secure certificate). You call the action page with https too. Then you encrypt the data in the db so if someone breaks in the data is gobbledygook. When you review the data in your protected admin area you also do it over a secure https connection, after you've plugged in the private key that unencrypts the data for viewing. > > Got all that? :D Its not a subject whose component parts can easily be digested in a single email. > > ------------------------------------------- > Matt Robertson, [EMAIL PROTECTED] > MSB Designs, Inc. http://mysecretbase.com > ------------------------------------------- > > > ---------- Original Message ---------------------------------- > From: "David Green" <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > date: Tue, 4 Feb 2003 14:11:57 -0800 > > >Hello list > > > >I'm just a part time web guy, I have a website for soccer where people are going to signup for the league. It will have personal information but no money transactions. Can someone point me to a website that would show how to do the basics in security and encryption. This is not any super secret stuff just peoples/kids name addresses and phones numbers I can't spend a bunch of money but would like to secure from the basic hackers, I don't think this is a site people would try hard to break into but since it has kids names I should do something. > > > >I know I visit sites and it warns me that am about to send unsecured data and do I want to. How do I send it secured. > > > >Thanks the help now and in the past > > > >David > > > > > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq This list and all House of Fusion resources hosted by CFHosting.com. The place for dependable ColdFusion Hosting. Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
