Re: [PHP] e-Commerce password standards?
At 2:45 PM -0500 8/18/06, Richard Lynch wrote: I've searched some of the obvious candidates, found nothing much, and am in the process of determining at least some of the basic rules for other similar sites. Richard: I'm sure you Googled for this, but password strength brought up some interesting results. The most interesting/informative for me was: http://www.securitystats.com/tools/password.php I think the site is a bit dated, but it's good information. To force your users to have a secure password, you could provide tools to help them, such as a password generator (one that would suit your security concerns) or provide a strength meter and then only accept those with the appropriate strengths. I have code, but some might refer to it as kiddy-script caliber. Please let me know if I can help. tedd -- --- http://sperling.com http://ancientstones.com http://earthstones.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] e-Commerce password standards?
My boss has asked me to seek out any reputable Standards-based documentation for end-user passwords for an e-commerce site. In particular, this site allows users to login with username/password and order food with their credit card on file. So we want to force them to use suitable passwords on their accounts. I've searched some of the obvious candidates, found nothing much, and am in the process of determining at least some of the basic rules for other similar sites. Of course, some of the rules might be like: If they haven't logged in for over 6 months then blah blah blah. I'm not going to be able to determine that in a realistic time-frame. Is there any sort of guide-line documentation maintained out there for specifc use-cases? Obviously the use-case of the password matters a great deal -- an ecommerce site minimum standard is hopefully more stringent than some stupid blog or something... But surely the Banks aren't all just making up their own rules as they go, are they?... -- Like Music? http://l-i-e.com/artists.htm -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] PHP e-commerce questions
Hello. I have built a site where people can register their weddings. I use MySQL/PHP to handle the database. I wish to add a step where people must pay to enter their information into the database. How do I do this? What services do ya'll recommend? I won't need a complicated shopping cart, since there will just be one thing to purchase... I just need something that takes credit card information and then assigns the user a username and password... thanks a lot, Matt -- -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] PHP e-commerce questions
From: Matt Hedges [mailto:[EMAIL PROTECTED] Subject: [PHP] PHP e-commerce questions Hello. Hi! I have built a site where people can register their weddings. I use MySQL/PHP to handle the database. I wish to add a step where people must pay to enter their information into the database. How do I do this? I'm still new to PHP, but I have integrated Paypal into my shopping cart, as it allows immediate approval and sends the confirmation code back as PHP so that I can process the variables it sends while confirming the identity of the server it was sent from. --kinda complicated, but once you understand PHP it's quite easy to do. What services do ya'll recommend? Paypal I won't need a complicated shopping cart, since there will just be one thing to purchase... I just need something that takes credit card information and then assigns the user a username and password... As stated the advantage to paypal (as there might be others that do the same, haven't done any other research as I liked what paypal does for me) is that you can get instant response to a credit card processing request. For example like your wedding registry, if you had a Download for software you wanted to give to someone for instant download for cost, they can pay through paypal, be sent immediately back to the site once confirmed for instant download. If you'd like more information you can setup an account at www.paypal.com, then navigate to the :Merchant Tools: Then to :Instant Payment Notification: and it will explain how it works in more detail. Good luck. ***NOW, keep in mind this is only my opinion, do some research, Google for Credit card processing firms that will allow you to do this aswell, There could be others out there for you to try. One thing to point out is to watch the fees associated with instant and credit card transactions. Some companys charge a higher percentage to allow you to user their services. HTH :) Wolf -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] E-Commerce Advice? Squirrelcart?
Hello, I am working on using PHP to build a web store. http://www.squirrelcart.com/ looks to be pretty good for a shopping cart- does anyone have any experience with this or others? Also, what suggestions do ya'll have for a payment gateway? thanks matt -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-Commerce Advice? Squirrelcart?
PayPal has some pretty impressive inter-active programming API's. Other then that, the only suggestion I could make is try and steer clear of AuthorizeNET. On Mon, 2004-02-23 at 12:53, Matt Hedges wrote: Hello, I am working on using PHP to build a web store. http://www.squirrelcart.com/ looks to be pretty good for a shopping cart- does anyone have any experience with this or others? Also, what suggestions do ya'll have for a payment gateway? thanks matt -- Adam Voigt [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] E-Commerce Advice? Squirrelcart?
I have used OsCommerce, and not had any problems. Original Message Follows From: Matt Hedges [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: [PHP] E-Commerce Advice? Squirrelcart? Date: Mon, 23 Feb 2004 11:53:14 -0600 Hello, I am working on using PHP to build a web store. http://www.squirrelcart.com/ looks to be pretty good for a shopping cart- does anyone have any experience with this or others? Also, what suggestions do ya'll have for a payment gateway? thanks matt -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php _ Take off on a romantic weekend or a family adventure to these great U.S. locations. http://special.msn.com/local/hotdestinations.armx -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-Commerce Advice? Squirrelcart?
on 2/23/04 9:53, Matt Hedges at [EMAIL PROTECTED] wrote: Hello, I am working on using PHP to build a web store. http://www.squirrelcart.com/ looks to be pretty good for a shopping cart- does anyone have any experience with this or others? Also, what suggestions do ya'll have for a payment gateway? thanks matt I have not used squirrelcart, but I do really like eShox (http://www.eshox.com) most of my clients use it and it has great configurability. Most of my clients use either Authorize.net or 2checkout.com, both seem to work quite well, especially with eshox. Cheers! Rick -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-Commerce
on 2/12/04 20:43, Jimmy at [EMAIL PROTECTED] wrote: Hi all. Is PHP a suitable language for building an online shop? Where would I go to find out more info on this? Thanks in advance! The best ecommerce shop I have found that runs in PHP and MySQL would be eShox.. a very very very well done shop. At the core it WAS oscommerce, but it has been modified and rewritten so that it is way more then oscommerce ever was and ever will be :) Way more secure and just plain a great program. find it here: http://www.eshox.com Cheers! Rick -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-Commerce
On Friday 13 February 2004 15:45, Radwan Aladdin wrote: No offence intended but ... Do you mean by this I can open a company like PaySystems or 2CheckOut! ... if you're having to ask, then I doubt it. Building a payment gateway is no small undertaking. And frankly it requires far more knowledge than you possess right now! -- Jason Wong - Gremlins Associates - www.gremlins.biz Open Source Software Systems Integrators * Web Design Hosting * Internet Intranet Applications Development * -- Search the list archives before you post http://marc.theaimsgroup.com/?l=php-general -- /* You never have to change anything you got up in the middle of the night to write. -- Saul Bellow */ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re[2]: [PHP] E-Commerce
Hello John, Friday, February 13, 2004, 7:09:47 AM, you wrote: JN First off, it won't install or run if you have register_globals off. Wow, I had no idea - I've known about OScommerce for a while, but didn't realise it needed you to turn on register_globals - that is, quite frankly, shocking. But then again - you get what you pay for?! JN Second, the code looks like it was written by someone who originaly had JN no intention of releasing this code to the world. It's sloppy, JN unorganized, and poorly (if at all) commented. Compare the code from an JN application like phpMyAdmin to OSCommerce to see what I mean. This doesn't surprise me. It's a hard line to walk though isn't it - I mean on the one hand we can sit here and lambast the poor quality of the code - and on the other they're providing this for free and offering a solution to people who cannot afford a more expensive approach. It's sort of like PHPNuke - dear God, I've never seen code so badly written in my entire life, it's a wonder it all hung together. And yet look how popular it is. C'est la vie! -- Best regards, Richardmailto:[EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] E-Commerce II
Wow, thanks for the help guys. Appreciate it. Here's 2 other Q that popped into my head while researching... 1. I looked at Yahoo! and bCentral, they both charge monthly fees for using their E-Commerce Tools. Why? I thought it should be a one time thing? Or are they not providing code, just letting us use the code via Explorer and Frontpage? 2. If I were to look for a website hoster, any recommendations? Thanks! -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] E-Commerce II
Wow, thanks for the help guys. Appreciate it. Here's 2 other Q that popped into my head while researching... 1. I looked at Yahoo! and bCentral, they both charge monthly fees for using their E-Commerce Tools. Why? I thought it should be a one time thing? Or are they not providing code, just letting us use the code via Explorer and Frontpage? I'm not sure about bCentral, but Yahoo bought out a company called Viaweb quite a few years ago (for about $48 million!!) and they provide a fully-hosted solution. This is great for non-technical users who just want to build their own store with a point and click interface. I would presume that because you are on the PHP list either you are looking to install one of the carts mentioned, build your own or customise someone elses offering because you have bespoke needs that one of the sites like Yahoo! Cannot meet 2. If I were to look for a website hoster, any recommendations? Hoho. You'll get as many recommendations as replies I'm sure. I'd suggest going to www.webhostingtalk.com and just hanging around to see what good and bad stuff is said about various hosts and make your mind up. Some things you need to think about though do you need a host or dedicated server and if it is just a host then you need to see what features they have and provide for PHP guys... Hope this helps a little Ade -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] E-Commerce
Hi all. Is PHP a suitable language for building an online shop? Where would I go to find out more info on this? Thanks in advance! -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] E-Commerce
Jimmy jimmy jimmy... Now if your question is, Can PHP be the most versatile languge that one should use for creating the best online shop ever? Then yes. Can PHP interact with MySql and just about every other Database program to store all your wonderful merchandise, in a nice compact easy to carry carrying case. Then YES. And if your also asking if PHP would be a server side scripting language like CGI/ASP/JAVA/~.. Then YES again. But if your asking whether or not PHP, would be able to SAY? Log your client's information Store your inventory Display your merchandise Process orders Interact with your clients Keep your client's informed of what's in and what's not Manipulate your inventory records Inform you of what's getting low for reordering Track what's selling and what isn't Allow online technical support through forums Allow 24x7 access to your Storefront And last but not least, Tuck you in at night? Then no. It can't tuck you in at night. But PHP does all the rest and SO MUCH MORERead about it here http://www.php.net Best Shopping cart website setup utility you'll ever need. Enjoy! Wolf -Original Message- From: Jimmy [mailto:[EMAIL PROTECTED] Sent: Thursday, February 12, 2004 10:44 PM To: [EMAIL PROTECTED] Subject: [PHP] E-Commerce Hi all. Is PHP a suitable language for building an online shop? Where would I go to find out more info on this? Thanks in advance! -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-Commerce
I just about wet my self laughing. Just look around the net, PHP is used in about 40% of the online shopping sites. - Original Message - From: PHP Email List [EMAIL PROTECTED] To: Jimmy [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Friday, February 13, 2004 6:48 PM Subject: RE: [PHP] E-Commerce Jimmy jimmy jimmy... Now if your question is, Can PHP be the most versatile languge that one should use for creating the best online shop ever? Then yes. Can PHP interact with MySql and just about every other Database program to store all your wonderful merchandise, in a nice compact easy to carry carrying case. Then YES. And if your also asking if PHP would be a server side scripting language like CGI/ASP/JAVA/~.. Then YES again. But if your asking whether or not PHP, would be able to SAY? Log your client's information Store your inventory Display your merchandise Process orders Interact with your clients Keep your client's informed of what's in and what's not Manipulate your inventory records Inform you of what's getting low for reordering Track what's selling and what isn't Allow online technical support through forums Allow 24x7 access to your Storefront And last but not least, Tuck you in at night? Then no. It can't tuck you in at night. But PHP does all the rest and SO MUCH MORERead about it here http://www.php.net Best Shopping cart website setup utility you'll ever need. Enjoy! Wolf -Original Message- From: Jimmy [mailto:[EMAIL PROTECTED] Sent: Thursday, February 12, 2004 10:44 PM To: [EMAIL PROTECTED] Subject: [PHP] E-Commerce Hi all. Is PHP a suitable language for building an online shop? Where would I go to find out more info on this? Thanks in advance! -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-Commerce
all in one awesome package: www.oscommerce.com - Original Message - From: PHP Email List [EMAIL PROTECTED] To: Jimmy [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Friday, February 13, 2004 1:48 PM Subject: RE: [PHP] E-Commerce Jimmy jimmy jimmy... Now if your question is, Can PHP be the most versatile languge that one should use for creating the best online shop ever? Then yes. Can PHP interact with MySql and just about every other Database program to store all your wonderful merchandise, in a nice compact easy to carry carrying case. Then YES. And if your also asking if PHP would be a server side scripting language like CGI/ASP/JAVA/~.. Then YES again. But if your asking whether or not PHP, would be able to SAY? Log your client's information Store your inventory Display your merchandise Process orders Interact with your clients Keep your client's informed of what's in and what's not Manipulate your inventory records Inform you of what's getting low for reordering Track what's selling and what isn't Allow online technical support through forums Allow 24x7 access to your Storefront And last but not least, Tuck you in at night? Then no. It can't tuck you in at night. But PHP does all the rest and SO MUCH MORERead about it here http://www.php.net Best Shopping cart website setup utility you'll ever need. Enjoy! Wolf -Original Message- From: Jimmy [mailto:[EMAIL PROTECTED] Sent: Thursday, February 12, 2004 10:44 PM To: [EMAIL PROTECTED] Subject: [PHP] E-Commerce Hi all. Is PHP a suitable language for building an online shop? Where would I go to find out more info on this? Thanks in advance! -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-Commerce
Terence wrote: all in one awesome package: www.oscommerce.com I just got finished building a site for a customer who wanted OSCommerce (didn't want to pay for a 'real' shopping cart, or for me to build him one), and in my 8+ years of web development, they have to be one of the worst in most aspects. First off, it won't install or run if you have register_globals off. When I saw this, I said to myself, this isn't so bad if they're writing secure code, but it opens up ALL the code on the site. Then I started configuring it (hacking it) to fit the customers wants and desires, and found a few areas where it could be compromised. Second, the code looks like it was written by someone who originaly had no intention of releasing this code to the world. It's sloppy, unorganized, and poorly (if at all) commented. Compare the code from an application like phpMyAdmin to OSCommerce to see what I mean. The only thing I have positive to say about it, is on it's ease of use for the end user who wants to run an online store, but doesn't know diddly about computers. Until they fix the first issue, I will continue to recommend against OSCommerce. -- By-Tor.com It's all about the Rush http://www.by-tor.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] E-Commerce
JOhn, do you have any other recommendations that you might have looked at after your experience with OS commerce? -Original Message- From: John Nichel [mailto:[EMAIL PROTECTED] Sent: Friday, February 13, 2004 9:10 AM To: [EMAIL PROTECTED] Subject: Re: [PHP] E-Commerce Terence wrote: all in one awesome package: www.oscommerce.com I just got finished building a site for a customer who wanted OSCommerce (didn't want to pay for a 'real' shopping cart, or for me to build him one), and in my 8+ years of web development, they have to be one of the worst in most aspects. First off, it won't install or run if you have register_globals off. When I saw this, I said to myself, this isn't so bad if they're writing secure code, but it opens up ALL the code on the site. Then I started configuring it (hacking it) to fit the customers wants and desires, and found a few areas where it could be compromised. Second, the code looks like it was written by someone who originaly had no intention of releasing this code to the world. It's sloppy, unorganized, and poorly (if at all) commented. Compare the code from an application like phpMyAdmin to OSCommerce to see what I mean. The only thing I have positive to say about it, is on it's ease of use for the end user who wants to run an online store, but doesn't know diddly about computers. Until they fix the first issue, I will continue to recommend against OSCommerce. -- By-Tor.com It's all about the Rush http://www.by-tor.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php Disclaimer This e-mail transmission contains confidential information, which is the property of the sender. The information in this e-mail or attachments thereto is intended for the attention and use only of the addressee. Should you have received this e-mail in error, please delete and destroy it and any attachments thereto immediately. Under no circumstances will the Cape Technikon or the sender of this e-mail be liable to any party for any direct, indirect, special or other consequential damages for any use of this e-mail. For the detailed e-mail disclaimer please refer to http://www.ctech.ac.za/polic or call +27 (0)21 460 3911 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-Commerce
Okay.. these are for the Shopping Cart.. Can anybody here tell me.. how to build a Payment Gateway? For example: like 2CheckOut did.. not only applicatios connected with 2CheckOut... I want to know how to build a company like 2CheckOut.. Of course I know it is too hard.. but I must know about that.. Hope any body here knows about that.. Regards.. - Original Message - From: John Nichel [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, February 13, 2004 11:24 AM Subject: Re: [PHP] E-Commerce Angelo Zanetti wrote: JOhn, do you have any other recommendations that you might have looked at after your experience with OS commerce? Not that are written in PHP. Not that I wouldn't recommend any, I just haven't looked at any other PHP carts besides OS Commerce. I'm sure there are some good ones, just like there are quite a few good ones written in Perl, C, etc. You can look here... http://php.resourceindex.com/Complete_Scripts/Shopping_Carts/ -- By-Tor.com It's all about the Rush http://www.by-tor.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-Commerce
Radwan Aladdin wrote: Okay.. these are for the Shopping Cart.. Can anybody here tell me.. how to build a Payment Gateway? For example: like 2CheckOut did.. not only applicatios connected with 2CheckOut... I want to know how to build a company like 2CheckOut.. Of course I know it is too hard.. but I must know about that.. Hope any body here knows about that.. Regards.. *sigh* http://www.google.com/search?hl=enie=UTF-8oe=UTF-8q=php+payment+gatewaybtnG=Google+Search http://php.resourceindex.com/Complete_Scripts/Commerce_and_Finance/ -- By-Tor.com It's all about the Rush http://www.by-tor.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-Commerce
Cool!!! Do you mean by this I can open a company like PaySystems or 2CheckOut! Must I contact banks all over the world to make the Credit Card Transaction? Or must I register in an organization? What to do now after registratin here http://www.ospayments.com/001/contact.html what must I do? Regards.. - Original Message - From: John Nichel [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, February 13, 2004 11:39 AM Subject: Re: [PHP] E-Commerce Radwan Aladdin wrote: Okay.. these are for the Shopping Cart.. Can anybody here tell me.. how to build a Payment Gateway? For example: like 2CheckOut did.. not only applicatios connected with 2CheckOut... I want to know how to build a company like 2CheckOut.. Of course I know it is too hard.. but I must know about that.. Hope any body here knows about that.. Regards.. *sigh* http://www.google.com/search?hl=enie=UTF-8oe=UTF-8q=php+payment+gatewayb tnG=Google+Search http://php.resourceindex.com/Complete_Scripts/Commerce_and_Finance/ -- By-Tor.com It's all about the Rush http://www.by-tor.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] e-commerce with php
Hi! I don't know anything about e-commerce. I want to build a e-commerce site with php-mysql. So i have turorial for this idea. Can you help me about it? i know php and mysql but i dont have any information about ssl, e-commerce, paying with credit card. thank you very much! you can send me online document as attachment. or you can send me an adress or etc. _ Help STOP SPAM with the new MSN 8 and get 2 months FREE* http://join.msn.com/?page=features/junkmail -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] E-Commerce interfacing...
What is a good service to process credit card numbers for an E-Commerce site? To be specific I mean an easy interface with a PHP based system (maybe even sample code) eg works well with curl... and second any personal recommendations... -- JJ Harrison [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-commerce site issue?
Thanks again, Justin... Any suggestions on how to store/transmit the credit cards securely? And how do I process them manually? How do I get set up to accept credit cards? Thanks, gab. Justin French [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... on 10/08/02 12:05 AM, The Gabster ([EMAIL PROTECTED]) wrote: Thanks a lot... Hmm... I gues for the beginning I would go and process the purchases manually. Later on if the purchases increase, than I would opt for proccesing credit cards via the server. So initially you would just store/transmit the credit cards securely (a whole other can of worms!!), and process them manually offline. I'd recommend this for any start-up e-commerce site, because it cuts down some development, start up costs and saves the margins that an online credit-card merchant takes. When and if you decide to automate the credit card process (authorising and charging the card), it's done through a merchant. This will totally depend on your circumstances and budget, but you basically pass the details to a third party that specialises in this stuff, like authorise.net (and hundreds of other similar business'), a bank or financial institution etc etc. All of them will have different procedures and code, but you basically pass them the details, they pass back a success or failure, charge the credit card, take their % cut (everything from a flat fee like $1, through to 3% or 5%), and pass on the rest to you. There are further options above and beyond this, but they'd be out of reach/budget of almost any small-medium e-comm site. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-commerce site issue?
on 13/08/02 6:58 AM, The Gabster ([EMAIL PROTECTED]) wrote: Thanks again, Justin... Any suggestions on how to store/transmit the credit cards securely? I'm not a security expert at all, so don't consider this advice anything more than suggested for further reading. This is a big can of worms. To transmit them, you need to transmit them via SSL (https://). Talk to your host about this. To store them in an encrypted manner, you should look at mcrypt() PHP functions, and some of the MYSQL encrypting functions... Both have special server requirements, and you'll need to be WAAAY careful of where and how you store the encryption keys (passwords). Especially on a shared server. Ask your host how THEY handle CC#'s, if at all. Needless to say, this is not light work. You should seriously consider paying someone to do this properly for -- at least the first time, and try to learn off them. You should spend lots of time talking with your host about security holes, and most importantly, you should destroy the cc details as soon as you no longer need them -- 20 cc#'s stored is less desirable to a hacker than 2000, or 20,000 cc#'s. How do I get set up to accept credit cards? And how do I process them manually? I'm not a bank. The owner of the store needs to ask their bank. Justin French -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-commerce site issue?
On Tuesday 13 August 2002 10:29, Justin French wrote: Needless to say, this is not light work. You should seriously consider paying someone to do this properly for -- at least the first time, and try to learn off them. You should spend lots of time talking with your host about security holes, and most importantly, you should destroy the cc details as soon as you no longer need them -- 20 cc#'s stored is less desirable to a hacker than 2000, or 20,000 cc#'s. But how would the person breaking in know how many CC#'s you were storing? Reminds me of the signs that you see in some stores -- Our staff do not have access to the safe. So you can have on your website Hackers please note we only store twenty credit card numbers at any one time :) -- Jason Wong - Gremlins Associates - www.gremlins.com.hk Open Source Software Systems Integrators * Web Design Hosting * Internet Intranet Applications Development * /* [The French Riviera is] a sunny place for shady people. -- Somerset Maugham */ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-commerce site issue?
on 13/08/02 1:39 PM, Jason Wong ([EMAIL PROTECTED]) wrote: On Tuesday 13 August 2002 10:29, Justin French wrote: Needless to say, this is not light work. You should seriously consider paying someone to do this properly for -- at least the first time, and try to learn off them. You should spend lots of time talking with your host about security holes, and most importantly, you should destroy the cc details as soon as you no longer need them -- 20 cc#'s stored is less desirable to a hacker than 2000, or 20,000 cc#'s. But how would the person breaking in know how many CC#'s you were storing? Reminds me of the signs that you see in some stores -- Our staff do not have access to the safe. So you can have on your website Hackers please note we only store twenty credit card numbers at any one time :) Hehehe that wasn't quite the point I was trying to make :) Only storing 20 is less risk than 20,000. Storing zero is the safest. Justin French -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-commerce site issue?
on 10/08/02 12:05 AM, The Gabster ([EMAIL PROTECTED]) wrote: Thanks a lot... Hmm... I gues for the beginning I would go and process the purchases manually. Later on if the purchases increase, than I would opt for proccesing credit cards via the server. So initially you would just store/transmit the credit cards securely (a whole other can of worms!!), and process them manually offline. I'd recommend this for any start-up e-commerce site, because it cuts down some development, start up costs and saves the margins that an online credit-card merchant takes. When and if you decide to automate the credit card process (authorising and charging the card), it's done through a merchant. This will totally depend on your circumstances and budget, but you basically pass the details to a third party that specialises in this stuff, like authorise.net (and hundreds of other similar business'), a bank or financial institution etc etc. All of them will have different procedures and code, but you basically pass them the details, they pass back a success or failure, charge the credit card, take their % cut (everything from a flat fee like $1, through to 3% or 5%), and pass on the rest to you. There are further options above and beyond this, but they'd be out of reach/budget of almost any small-medium e-comm site. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-commerce site issue?
JUstin, Thanks a lot... Hmm... I gues for the beginning I would go and process the purchases manually. Later on if the purchases increase, than I would opt for proccesing credit cards via the server. Can you please give me some details on this? I know php, have Apache on a Win2k machine. Many thanks, gabi. Justin French [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... on 09/08/02 3:56 AM, The Gabster ([EMAIL PROTECTED]) wrote: Hi all, Using my own server (not through an ISP), how do I go about setting up an e-commerce site? So I can accept credit cards for purchases? Do you want to ACCEPT credit cards (process the purchases manually), or PROCESS credit cards via the server. There's a big difference. Justin French -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] E-commerce site issue?
on 09/08/02 3:56 AM, The Gabster ([EMAIL PROTECTED]) wrote: Hi all, Using my own server (not through an ISP), how do I go about setting up an e-commerce site? So I can accept credit cards for purchases? Do you want to ACCEPT credit cards (process the purchases manually), or PROCESS credit cards via the server. There's a big difference. Justin French -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] e-commerce example
I'm looking for e-commerce example (PHP+MySQL) so I don't start from zero and save some time. Does somebody knows something about? Thanks Makis Savaidis -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] e-commerce example
www.google.com / www.freshmeat.net Kind Regards, Chris Knipe MegaLAN Corporate Networking Services Tel: +27 21 854 7064 Cell: +27 72 434 7582 - Original Message - From: savaidis [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, June 08, 2002 5:59 AM Subject: [PHP] e-commerce example I'm looking for e-commerce example (PHP+MySQL) so I don't start from zero and save some time. Does somebody knows something about? Thanks Makis Savaidis -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] e-commerce example
try this link http://www.devshed.com/Server_Side/PHP/Commerce -Original Message- From: savaidis [mailto:[EMAIL PROTECTED]] Sent: June 7, 2002 11:59 PM To: [EMAIL PROTECTED] Subject: [PHP] e-commerce example I'm looking for e-commerce example (PHP+MySQL) so I don't start from zero and save some time. Does somebody knows something about? Thanks Makis Savaidis -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] e-commerce example
I'm looking for e-commerce example (PHP+MySQL) so I don't start from zero and save some time. You could try searching for php mysql commerce on any of the following: www.google.com www.freshmeat.net www.hotscripts.com Where you'd probably find what you're looking for. CYA, Dave -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] E-Commerce and small intranet solution
Does anyone know where I can find the best (not just good) shopping cart solution that also has small intranet functionality? Im not too worried about the intranet aspect right now, but I really need examples of some of the best carts that are out there. -- Should you have any questions, comments or concerns, feel free to call me at 318-338-2034. Thank you for your time, Jay Fitzgerald, Design Director - CSBW-A, CPW-A, CWD-A, CEMS-A = Bayou Internet..(888) 30-BAYOU...http://www.bayou.com Mississippi Internet...(800) MISSISSIPPIhttp://www.mississippi.net Vicksburg Online..(800) MISSISSIPPIhttp://www.vicksburg.com Bama Online.(877) GETCONNECTED...http://www.bamaonline.net = Tel: (318) 338-2034ICQ: 38823829Fax: (318) 323-5053 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] E-Commerce and small intranet solution
have you searched freshmeat.net? google.com? both of those can give you the examples you are looking for. * * Cal Evans * Journeyman Programmer * Techno-Mage * http://www.calevans.com * -Original Message- From: Jay Fitzgerald [mailto:[EMAIL PROTECTED]] Sent: Wednesday, June 05, 2002 2:16 PM To: [EMAIL PROTECTED] Subject: [PHP] E-Commerce and small intranet solution Does anyone know where I can find the best (not just good) shopping cart solution that also has small intranet functionality? Im not too worried about the intranet aspect right now, but I really need examples of some of the best carts that are out there. -- Should you have any questions, comments or concerns, feel free to call me at 318-338-2034. Thank you for your time, Jay Fitzgerald, Design Director - CSBW-A, CPW-A, CWD-A, CEMS-A = Bayou Internet..(888) 30-BAYOU...http://www.bayou.com Mississippi Internet...(800) MISSISSIPPIhttp://www.mississippi.net Vicksburg Online..(800) MISSISSIPPIhttp://www.vicksburg.com Bama Online.(877) GETCONNECTED...http://www.bamaonline.net = Tel: (318) 338-2034ICQ: 38823829Fax: (318) 323-5053 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] E-Commerce
Hi, Has anyone ever used any of the ecommerce shops from hotscripts.com before?? or used any other scripts similar?? I am trying to work out which people think is the best for setting up an online shop with credit card facilities, etc. Thankyou Andrew Duck -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
[PHP] Recommended book on PHP e-commerce
Can someome recommend such a book to a relative newcomer. I'm looking for something on writing carts and the processing that goes thereafter. Martin -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
[PHP] Re: Recommended book on PHP e-commerce
PHP and MySQL Web Development by Luke Welling and Laura Thomson may be what you are looking for if you are going to use mysql as the database. There are introductory chapters for mysql and php. The book then moves on to more advanced topics related to using php with mysql. It also includes a detailed chapter and sample code for building a shopping cart. Fred Martin Wright [EMAIL PROTECTED] wrote in message 01c1786d$dde9cce0$5aa3fea9@serv">news:01c1786d$dde9cce0$5aa3fea9@serv... Can someome recommend such a book to a relative newcomer. I'm looking for something on writing carts and the processing that goes thereafter. Martin -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
[PHP] E-commerce
Anyone recommands any company which can build an Internet shopping mall? Thanks.
Re: [PHP] E-commerce
you can actually download some php stuff for free.. try phpbuilder.com or phpclass.com there's a lot out there you just have to find it.. :) jay - Original Message - From: Eugene Yi (InfoSpace Inc) [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, August 20, 2001 5:10 PM Subject: [PHP] E-commerce Anyone recommands any company which can build an Internet shopping mall? Thanks. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
[PHP] E-Commerce - Integrating Sessions With Charging Processes That rePOST
Hi, I have basically seen and used two methods for integrating credit card gateways into PHP code. The first method is one that opens a socket to the gateway server and sends the data from within the code. The second is where FORM data is posted to a https URL with the URL is should send the response back to, with the confirmation code, etc. I traditionally use PG for situations of e-commerce, mainly because of transactions. I like the first method better, because I feel it is more secure, seemless, and less chance for errors to occur (either user induced, or other problems). I like being able to store all of the required data in sessions (rather than adding to the DB at each step) and then making all of the transactional queries at the end of the credit card charging process. The problem I face is that all of the companies I've researched that allow direct socket integration seem to charge quite a bit more in general than those that use the POST/REDIRECT method of charging. So, if anyone knows of a reliable and affordable company that allows socket integration, that would solve the problem best. However, because of budget issues, I may need to use one of these cheaper companies, who ultimately use the POST/REDIRECT method. My questions are how do you securly, reliably, and seemlessly integrate sessions within that type of gateway. Because once the form data is posted to the credit card gateway, it redirects (posts response data) back to the script of your choice. However, in my experience, the sessions are not restored/recognized until the browser is refreshed on the client side (through the use of JavaScript) to get the server to recognize the request as coming from your user, rather than the as a post from the gateway. I don't want to have to deal with getting sloppy and adding additional refreshes/java script if thats the only way to do it. If I were to merely have the code generate a form based on hidden tags and have javascript auto-form submit, then I would open to security problems, because I could no longer restrict the script the gateway respondes to by an HTTP_REFFER. Because the clients order id that is generated will be stored as a session, I need a way to reference the order ID and confirmation code that is returned by the posted data from the gateway, against the session data to start inserting the data into the DB if it was a successful charge. Any ideas...? Maybe there's a quick solution out there I am just overlooking. The solution would be easy if I wasn't inserting all of my data at the end of the process based on the session data. But this is how the code is has to work, so what do you all think, how should I deal with this? Thanks, FT -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
[PHP] e-commerce software
Hi, I'm currently using a perl/CGI developed e-commerce/website management tool which incorporates sessions (the ability to shop anywhere in the site, not just in a shop), members, member management, rewards points, mailing lists, statistics, and a complete separation of code and layout (so that the same code can be reconfigured for a new client with maybe only a day or hour of work). It uses DB Files instead of a database. It also uses a windows GUI, which I want to replace with a web GUI for adding and deleting products, making categories, etc etc, maybe tied in with an excell spreadsheet or a windows based dbase. The problem is, I didn't write the code, i'm only buying a license to use it on each site, which is eating a bit chunk of my profit away. On top of that, the developer is looking at selling the code to someone else soon, which will make it harder, if not impossible to get the code. So, before that happens, i'm looking into other options, including writing new code, or extending pre-existing code. So far I've been looking at pre-existing apps and code snippets available at zend.com, but I'm hoping that some developers out there either have an app, or have used/extended an app to suit their needs, which they may be able to recommend. Yes, I'm prepared to pay for decent code, it doesn't have to be free, but I would have to spend a long time evaluating it before buying it. At this stage (unless people advise me otherwise), I plan to use FreeBSD, PHP4 and MySQL as the platform. I'm not realy interested in anything that relies on javascript, java or cookies to run (i'd preffer sessions and server-side calculations), and i'd prefer something that is website based, not shop based (sessions can be used site wide, etc etc). Yeah yeah, I know I'm asking a lot :) Has anyone got any recommendations, or maybe anyone in Australia want to start developing one with me? Kind Regards, Justin French Creative Director Indent.com.au -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] e-commerce software
hi, i think what you're looking for is something like phpshop you may find it in www.edikon.org, and it's free. On 06-Mar-2001 Justin French wrote: Hi, I'm currently using a perl/CGI developed e-commerce/website management tool which incorporates sessions (the ability to shop anywhere in the site, not just in a shop), members, member management, rewards points, mailing lists, statistics, and a complete separation of code and layout (so that the same code can be reconfigured for a new client with maybe only a day or hour of work). It uses DB Files instead of a database. It also uses a windows GUI, which I want to replace with a web GUI for adding and deleting products, making categories, etc etc, maybe tied in with an excell spreadsheet or a windows based dbase. The problem is, I didn't write the code, i'm only buying a license to use it on each site, which is eating a bit chunk of my profit away. On top of that, the developer is looking at selling the code to someone else soon, which will make it harder, if not impossible to get the code. So, before that happens, i'm looking into other options, including writing new code, or extending pre-existing code. So far I've been looking at pre-existing apps and code snippets available at zend.com, but I'm hoping that some developers out there either have an app, or have used/extended an app to suit their needs, which they may be able to recommend. Yes, I'm prepared to pay for decent code, it doesn't have to be free, but I would have to spend a long time evaluating it before buying it. At this stage (unless people advise me otherwise), I plan to use FreeBSD, PHP4 and MySQL as the platform. I'm not realy interested in anything that relies on javascript, java or cookies to run (i'd preffer sessions and server-side calculations), and i'd prefer something that is website based, not shop based (sessions can be used site wide, etc etc). Yeah yeah, I know I'm asking a lot :) Has anyone got any recommendations, or maybe anyone in Australia want to start developing one with me? Kind Regards, Justin French Creative Director Indent.com.au -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] Rui Barreiros Software Developer WEBSOLUT - Soluções Internet Emailto: [EMAIL PROTECTED] Personal Info: http://websolut.net/people/rui.html As informações contidas neste email são confidenciais e destinam-se apenas à(s) pessoa(s) a quem foi enviado: http://websolut.net/confidencialidade-responsabilidade.html -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
