On Apr 13, 2009, at 10:19 PM, Skip Evans wrote:

But doesn't also the form need to be secure since you're sending CC information from that form back to the web site's server?

That's what I've always assumed.

I need some opinions on this, and if I'm right I think the client will defer to a few more votes.

To add to what others have said: CC processors with which I have worked will audit your site *before* certifying your site to accept CC information. In other words, if you don't do SSL, you won't be *allowed* to process cards.


PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to