[Date Prev][Date Next][Thread Prev][Thread Next][Minivend by date ][Minivend by thread ]

Re: [mv] encrypt an entire order form with PGP

To: minivend-users@minivend.com
Subject: Re: [mv] encrypt an entire order form with PGP
From: Mike Heins <mikeh@minivend.com>
Date: Fri, 5 May 2000 07:59:56 -0400
In-Reply-To: <4.1.20000503203844.00aab250@pop3.friend.ly.net>
References: <4.1.20000503203844.00aab250@pop3.friend.ly.net>
Reply-To: minivend-users@minivend.com
Sender: owner-minivend-users@minivend.com

******    message to minivend-users from Mike Heins <mikeh@minivend.com>     ******

Quoting Michael Wootton (mcwphoto@friend.ly.net):
> 
> Hello:
> 
> I have a need to encrypt the entire order form with PGP instead of only
> encrypting the credit card number. Has anyone done this or have any ideas
> how it could be done. Thanks.
> 

% grep encrypt /work/minivend/doc/mvdocs.1
allowing encrypted transmission of sensitive customer data. This
In addition, it supports online payment systems and encryption; no
be simply sent to you, the store owner, via encrypted email or \s-1FAX\s0.
\s-1PGP\s0\-encrypted credit card numbers. See the demo page ord/report.html
\*(L"standard\*(R", it will use Minivend's \f(CWencrypt_standard_cc\fR routines.
\&    # Checks credit card number and destroys number after encryption
\&    # Checks credit card number and keeps number after encryption
The \f(CWGlobalSub\fR check_cc will be used to check and encrypt the
used to encrypt the mv_credit_card_number value before it is wiped
\fBIMPORTANT NOTE:\fR If you are not running with PGP or other encryption for
encryption off by default:
That will set encryption off by default. You can still set encryption
usernames and passwords to be case sensitive with no encryption,
password will be encrypted in the database.
\&    Route  VEN  encrypt         1
\&    Route  VEN  encrypt_program "/usr/bin/pgpe -fat -q -r %s"
routes. For example, if \f(CWencrypt_program\fR is set there then the same
Determines whether credit card encryption should be done for this
order. Either this or \f(CWencrypt\fR should always be set.
.Ip "encrypt" 4
Whether the \fBentire order\fR should be encrypted with the \fBencrypt_program\fR.
If \f(CWcredit_card\fR is set, then the credit card will first be encrypted,
then the entire order encrypted.
.Ip "encrypt_program" 4
The encryption program incantaton which should be used. Set identically
used for encryption of credit cards only. With \s-1PGP\s0 5 and 6, you can see
used for encryption. If \f(CWpgp_cc_key\fR is set, that key will be used
for credit card encryption instead of \f(CWpgp_key\fR. With \s-1PGP\s0 5 and 6,
\&    Route  HARD  encrypt          1
\&    Route  HARD  encrypt_program  "/usr/bin/pgpe -fat -q -r %s"
\&    Route  main  encrypt          1
\&    Route  main  encrypt_program  "/usr/bin/pgpe -fat -q -r %s"
and will be completely encrypted for emailing.
the encryption and the specification of the \s-1URL\s0 -- https: is used for the
To enable automated encryption of the credit card information, you need
encrypt the number. \s-1PGP\s0 is now recommended above all other encryption
If you are encrypting your credit cards with \s-1PGP\s0 or \s-1GPG\s0, or are
Set this to 1 to disable encrypted passwords for the \f(CWAdminUser\fR.
If set to \fIYes\fR, enables the automatic encryption and saving of
Set this value to 1 to force MiniVend to encrypt the card despite its idea of
Set this value to 1 to cause MiniVend encrypt only the card number and not
Set by MiniVend to the encrypted card information if the card validates
\s-1PGP\s0 is recommended as the encryption program, though you should remember
external encryption program will work. Two placeholders, \f(CW%p\fR and
\f(CW%f\fR, are defined, which are replaced at encryption time with the
This is separate from the \fI\s-1PGP\s0\fR directive, which enables \s-1PGP\s0 encryption
If \s-1PGP\s0 is the encryption program (MiniVend determines this by searching
demo) this sets the default value of the \f(CWencrypt_program\fR attribute.
The encrypted or unencrypted password (depending on Variable \s-1MV_NO_CRYPT\s0)
Below is the encrypted setting for a \f(CWblank\fR password.
to encrypt the \fIentire order\fR -- in addition to any encryption done as a
server used for encryption.
.IX Item "encrypt"
.IX Item "encrypt_program"

-- 
Internet Robotics, 131 Willow Lane, Floor 2, Oxford, OH  45056
phone +1.513.523.7621 fax 7501 <mikeh@minivend.com>

Research is what I'm doing when I don't know what I'm doing.
-- Wernher Von Braun
-
To unsubscribe from the list, DO NOT REPLY to this message.  Instead, send
email with 'UNSUBSCRIBE minivend-users' in the body to Majordomo@minivend.com.
Archive of past messages: http://www.minivend.com/minivend/minivend-list

References:
- [mv] encrypt an entire order form with PGP
  - From: Michael Wootton <mcwphoto@friend.ly.net>

Prev by Date: [mv] order routing
Next by Date: Re: [mv] order routing
Prev by thread: Re: [mv] encrypt an entire order form with PGP
Next by thread: [mv] url not found when using mv_orderpage to display search page
Index(es):
- Date
- Thread