Hi olinux, If I understand what you are saying...I would use mcrypt and encrypt the stored info, keeping the KEY and IV in a separate location for when you need it. Chances that anybody will break the triple des encryption without the KEY and IV are slim to none. That way, you don't have to freak out about moving the information around, that is, until it has been decrypted.
In order to convert the KEY and IV into a normal string, you need to use some base64 conversion function, I don't remember where I got that or if it was built into PHP when I did it, but I was able to get it to work pretty quickly. PHPs hooks into the mcrypt libraries are the best. So easy to use(and high quality) compared to anything else I've seen. Hope that helps, -Paul ----- Original Message ----- From: "olinux" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, January 17, 2002 1:22 PM Subject: [PHP-DB] Storing Credit Card info > I have a client that would like to store credit card > information online. I have worked with shopping cart > type systems in the past, but never stored CC info. > > What is the best way to do this? I was thinking that I > can write and read using include() to a directory that > is not available to the web. Then just display these > on SSL so that the client can retrieve the numbers. > Any ideas? > > Thanks much, > olinux > > __________________________________________________ > Do You Yahoo!? > Send FREE video emails in Yahoo! Mail! > http://promo.yahoo.com/videomail/ > > -- > PHP Database Mailing List (http://www.php.net/) > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > To contact the list administrators, e-mail: [EMAIL PROTECTED] > > -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]