[Gllug] OT : Credit cards in a MySQL Database
Alistair Mann
alistair at lgeezer.net
Tue Jun 17 11:20:54 UTC 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Thus spaketh Calvin la Cock on Tuesday 17 June 2003 11:48 am:
> Hi,
>
> I'm busy developing an e-commerce site that takes cash bookings that is
> secured via a credit card number.
>
> How can I safely safe credit card details in MySQL ? or any other sensitive
> information ? encryption ??
>
> Any ideas will help.
>
>
> Also, any online transaction clearing companies that you lot worked with
> that is good ? Anyone worked with WorldPay ?
I've worked with securetrading.com and skipjack.com, no real complaints with
either.
Are you saying that the ecommerce site will take a credit card no. to
guarantee a cash payment that doesn't arrive by post? That seems an awfully
convoluted way to do it, imho: credit card transactions can be refused for
many reasons, and the chances are, if the cash doesn't arrive then the card
won't work when you look to charge to it. Unless you charge it in the first
place, but then why bother waiting for the cash? Perhaps I've misunderstood
something.
Securest method I've come across thus far is to not to take the CC number at
all. Good services will arrange for the CC no to be transmitted from client
direct to the clearing house. If an ongoing payment is required, then that
can also be set up at the clearing house. That way, credit card numbers never
actually hit your site, never mind your database.
Cheers,
- --
Alistair
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE+7vmWEz+/jt85AfsRAvG5AJ43x6NU8PvEUAEBNSZe/JtC1GnVOQCdGzqd
WUpttaHxvWQKc98+8CiNgAw=
=OKO1
-----END PGP SIGNATURE-----
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list