Think about it for a moment.  E-commerce involving properly signed sites is,
at the very least, more secure than handing your credit card to a waiter in
a restauraunt.  The waiter can walk off with your card, and come back 2
minutes later with your card.  You'll never know if he copied down the name,
cc number and expiration date for later use.

        - Theo

-----Original Message-----
From: B.C. Lance [mailto:[EMAIL PROTECTED]]
Sent: Sunday, July 07, 2002 12:37 AM
Subject: Re: [PHP] HTTPS vs. HTTP ? - the weakest link

sorry to barge in. but the weakest link ain't in ssl. doesn't really 
matter how secure vs insecure it is. you can come up with the most 
secure technology in the whole world that no one can break into. the 
weakest link lies on the user/customer themselves.

you just need a trojan horse in their computer and there goes the 
neighbourhood. they can by all means send their credit card information 
over to but this piece of information will still be open to 
the person who plant the horse in the machine.

so i suppose the debate over here should really be: is ecommerce safe?
and not: http vs https

just my 2 cents
b.c. lance

PHP General Mailing List (
To unsubscribe, visit:

Reply via email to