[ic] Re: Requirement to not encrypt credit card numbers
interchange-users@icdevgroup.org
interchange-users@icdevgroup.org
Wed Aug 28 20:35:01 2002
On Thu, Aug 29, 2002 at 10:14:32AM +1000, interchange@lannet.com.au wrote:
> On Thu, 29 Aug 2002 racke@linuxia.de wrote:
>
> > interchange@lannet.com.au writes:
> >
> > > In the ORDERS_TO email the credit card details are either mangled or
> > > encrypted.
> > >
> > > I have a situation where I can handle the emails on a secure internal
> > > network and want to pass them straight thru to a printer anyway.
> > >
> > > This is simple, but it requires that the CC details be in clear.
> > >
> > > How is this best handled?
> >
> > This has been discussed many times on the list. It boils down to
> > "don't do that". You already start to loose your customer's confidence
> > in your professionality :-(.
>
> Re-read my second paragraph. I am above average paranoid about network
> security to the extent that the internal network traffic is 3DES
> encrypted, so don't comment on my professionality.
Re-read his first paragraph: this has been discussed many
times on the list. Do your homework.
>
> --
> Howard.
> LANNet Computing Associates - Your Linux people
> Contact detail at http://www.lannetlinux.com
> "Flatter government, not fatter government." - me
> Get rid of the Australian states.
>
> _______________________________________________
> interchange-users mailing list
> interchange-users@icdevgroup.org
> http://www.icdevgroup.org/mailman/listinfo/interchange-users
>
--
Christopher F. Miller, Publisher cfm@maine.com
MaineStreet Communications, Inc 208 Portland Road, Gray, ME 04039
1.207.657.5078 http://www.maine.com/
Content/site management, online commerce, internet integration, Debian linux