In principal yes. All of these requests are handled via https. Server logs however will log get requests so a credit card number included in a get request will be logged in clear-text in a server log somewhere. (I've seen this.) For this reason a POST is more secure than a GET if you are sending sensitive information.
Thanks guys, John Moss On Monday, July 28, 2014 9:51:27 PM UTC-6, forcesofindia.com wrote: > > +1 > > Nitish > ------------------------------ > From: 'Alan Holden' via Open BlueDragon <javascript:> > Sent: β29-β07-β2014 07:08 > To: [email protected] <javascript:> > Subject: Re: [OpenBD] Re: Loading a form using POST > > +1 to Dennis' response. > > The difference between GET and POST is the method by which the variables > are sent. GET uses the query string portion of the URL, so they are visible > to the browser operator (the same person conceptually holding the credit > card). So hiding it there merely gives a *perception* of security. > > The *real* security issue is - POST or GET - sending data over the > network via plain http - where people you don't even know can read it, and > not with a browser. You're using *https* to transmit credit card numbers, > right? > > Al > > On 7/28/2014 4:21 PM, Halo Maps wrote: > > >> They wanted to do this because they want to send credit card numbers > > >> (and other sensitive stuff) and GET is not as secure as POST for this. > > >> (I agree with this, by the way.) > > > > Get or POST unless itβs encrypted both have the same security standing. > One is just more visible to the user than the other. > > > > Dennis Powers > > UXB Internet - A website Design and Hosting Company > > P.O. Box 6028, Wolcott, CT 06716 - T:203-879-2844 > > W: http://www.uxbinternet.com > > W: http://www.ctbusinesslist.com > > > -- > -- > online documentation: http://openbd.org/manual/ > http://groups.google.com/group/openbd?hl=en > > --- > You received this message because you are subscribed to the Google Groups > "Open BlueDragon" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected] <javascript:>. > For more options, visit https://groups.google.com/d/optout. > > > -- > -- > online documentation: http://openbd.org/manual/ > http://groups.google.com/group/openbd?hl=en > > --- > You received this message because you are subscribed to the Google Groups > "Open BlueDragon" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected] <javascript:>. > For more options, visit https://groups.google.com/d/optout. > -- -- online documentation: http://openbd.org/manual/ http://groups.google.com/group/openbd?hl=en --- You received this message because you are subscribed to the Google Groups "Open BlueDragon" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
