Fw: [ic] c.c. encryption
Raymond Miecznik
interchange-users@interchange.redhat.com
Sun Mar 17 23:53:01 2002
what is the UI Interface ?
do you mean the admin interface ? and if so, where in there do you
upload the key ?
raymond
On Sunday, March 17, 2002, at 08:50 PM, Raymond Miecznik wrote:
>
> ----- Original Message -----
> From: "Ed LaFrance" <edl@newmediaems.com>
> To: <interchange-users@interchange.redhat.com>
> Sent: Sunday, March 17, 2002 5:10 PM
> Subject: Re: [ic] c.c. encryption
>
>
>> At 04:50 PM 3/17/2002 -0800, you wrote:
>>> you say that the credit card info was encrypted using the private key,
>>> well, i don't ever remember setting up PGP on this computer, where is
>>> my
>>> other half of the public key ?
>>>
>>> and how do I do this ? is this something that I do through the
>>> administrative interface on the shopping cart or over the command
>>> prompt
> ?
>>>
>>> can you give more details, the interchange instructions are lacking..
>>>
>>> ray
>>
>> Assuming GPG or PGP is installed on your web server, and you have
>> access,
>> you can used the UI Wizard to tell Interchange which one you are using
>> and
>> to upload a public key from a keypair generated on your desktop. If
>> you
>> need more detail than that, I will have to assume you have used
>> neither of
>> these encryption products. There is a load of encryption 101 info in
>> the
>> mail archives; several people have contributed how-tos and quick-start
> type
>> documents which can be found there with a little digging.
>>
>> - Ed L.
>>
>>
>>
>>
>>> On Sunday, March 17, 2002, at 04:40 PM, Ed LaFrance wrote:
>>>
>>>> At 04:07 PM 3/17/2002 -0800, you wrote:
>>>>> hi,
>>>>>
>>>>> I have a question about encryption, the credit card number is
>>>>> encrypted
>>>>> and I can only see the first 4 digits when a customer places an
>>>>> order,
>>>>> since it never leaves the server, as it is delivered as local email,
> how
>>>>> can I have this unencrypted or how does it work ?
>>>>>
>>>>> any instructions anywhere ?
>>>>
>>>> You unencrypt it using your private key (the public half of which was
>>>> used to encrypt the card in the first place). Obviously you want to
>>>> protect this adequately, so use a passphrase and any other means
>>>> available to you, such as emailing the order to a different user than
> the
>>>> one who owns the catalog. Ideally, the order email with encrypted
>>>> card
>>>> info would go to a different box, and so the private and public keys
>>>> would not need to be stored on the same machine.
>>>>
>>>> - Ed L.
>>>>
>>>> ===============================================================
>>>> New Media E.M.S. Software Solutions for Business
>>>> 463 Main St., Suite D eCommerce | Consulting | Hosting
>>>> Placerville, CA 95667 edl@newmediaems.com
>>>> (530) 622-9421 http://www.newmediaems.com
>>>> (866) 519-4680 Toll-Free (530) 622-9426 Fax
>>>> ===============================================================
>>>>
>>>> _______________________________________________
>>>> interchange-users mailing list
>>>> interchange-users@interchange.redhat.com
>>>> http://interchange.redhat.com/mailman/listinfo/interchange-users
>>>
>>> _______________________________________________
>>> interchange-users mailing list
>>> interchange-users@interchange.redhat.com
>>> http://interchange.redhat.com/mailman/listinfo/interchange-users
>>
>> ===============================================================
>> New Media E.M.S. Software Solutions for Business
>> 463 Main St., Suite D eCommerce | Consulting | Hosting
>> Placerville, CA 95667 edl@newmediaems.com
>> (530) 622-9421 http://www.newmediaems.com
>> (866) 519-4680 Toll-Free (530) 622-9426 Fax
>> ===============================================================
>>
>> _______________________________________________
>> interchange-users mailing list
>> interchange-users@interchange.redhat.com
>> http://interchange.redhat.com/mailman/listinfo/interchange-users
>>
>
>