Was the question "is it neccessary" or "how to do it secure"?
I myself don't tlike the idea,
But if needed, then this could be a way.
Sincerely,
Maxim Maletsky
Founder, Chief Developer
www.PHPBeginner.com // where PHP Begins
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, April 22, 2002 3:51 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED];
[EMAIL PROTECTED]
Subject: RE: [PHP] security
At 22.04.2002 15:17, you wrote:
>
>Search archives, as a tip I'd suggest to encrypt the Credit Card
>numbers with RC4 or some other algorithm.
Maxim,
I donīt agree your suggestion, as I mentioned earlier on the list, avoid
storing CC numbers
unless itīs absolutely necessary, youīve got a good insurance, and are
your own ISP knowing a lot of network security. Your suggestions may
make php-coder think that it is possible to store these data secure. But
thatīs
not only
depending on php. If you store any data in an ISP-environment, you
cannot be shure that this is secure, as you donīt know how they set up
their servers,
firewalls ...
I wouldnīt give this suggestion without any word on this.
Oliver
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
