Forums
This topic is locked
MySQL - How secure for Credit Card Information???
Posted 24 Jan 2003 15:01:43
1
has voted
24 Jan 2003 15:01:43 Paul Lacey posted:
Does any know if there is anything special that you need to do to a MySQL database when storing Credit Card information??I want to develop a small shop, I have my secure certificate for form pages etc but am unsure about the security at the database end.
thanks as always in advance!
Paul
Replies
Replied 24 Jan 2003 15:38:03
24 Jan 2003 15:38:03 Brent Colflesh replied:
Dear Paul,
Lesson #1 - never, ever store credit card information in an internet-connected database.
Lesson #2 - If you must, do it behind a "secure" (https) server, 3DES encrypt all data, kill all unneccessary MySQL user permissions.
Probably alot more, just off the top of my head...
Regards,
Brent
Lesson #1 - never, ever store credit card information in an internet-connected database.
Lesson #2 - If you must, do it behind a "secure" (https) server, 3DES encrypt all data, kill all unneccessary MySQL user permissions.
Probably alot more, just off the top of my head...
Regards,
Brent
Replied 24 Jan 2003 21:24:26
24 Jan 2003 21:24:26 Owen Eastwick replied:
Brent is right, your probaby better off looking for a third party payment processing solution like: www.paypal.com or www.worldpay.com
Let them handle all the security issues and payment processing, you can then just store product information and address details in your own database and integrate with the payment processor to pre-fill all the relevant information except the credit card numbers in order to cut down on form filling for the user.
Regards
Owen.
---------------------------------------------------
Used programming books and web development software for sale (UK only):
www.tdsf.co.uk/Shop.htm
Multiple Parameter UD4 / Access 2000 Search Tutorial:
www.tdsf.co.uk/tdsfdemo/
Let them handle all the security issues and payment processing, you can then just store product information and address details in your own database and integrate with the payment processor to pre-fill all the relevant information except the credit card numbers in order to cut down on form filling for the user.
Regards
Owen.
---------------------------------------------------
Used programming books and web development software for sale (UK only):
www.tdsf.co.uk/Shop.htm
Multiple Parameter UD4 / Access 2000 Search Tutorial:
www.tdsf.co.uk/tdsfdemo/
Replied 24 Jan 2003 22:31:37
24 Jan 2003 22:31:37 Paul Lacey replied:
Thanks guys,
thats made my mind up. Worldpay sounds like the best bet for me.
I won't be gambling on security issues I am not sure of!
thanks again for the good advice
thats made my mind up. Worldpay sounds like the best bet for me.
I won't be gambling on security issues I am not sure of!
thanks again for the good advice
Replied 25 Jan 2003 03:35:53
25 Jan 2003 03:35:53 Owen Eastwick replied:
PayPal is cheaper, no set-up or annual fees, just the transaction fee, which drops from 3.4% to 2.7% + 20pence per transaction if you receive more than $1000 a month, or equivalent in other currancies, and a £1.00 withdrawal fee when you transfer funds from PayPal to your bank account.
Regards
Owen.
-------------------------------------------------------------------------------------------
Used programming books and web development software for sale (UK only):
www.tdsf.co.uk/Shop.htm
Multiple Parameter UD4 / Access 2000 Search Tutorial:
www.tdsf.co.uk/tdsfdemo/
Regards
Owen.
-------------------------------------------------------------------------------------------
Used programming books and web development software for sale (UK only):
www.tdsf.co.uk/Shop.htm
Multiple Parameter UD4 / Access 2000 Search Tutorial:
www.tdsf.co.uk/tdsfdemo/
Replied 03 Aug 2007 00:35:47
03 Aug 2007 00:35:47 mike carter replied:
I agree paypal is cheaper but my merchant processor accepts more payments and works quicker on both ends. I've been using it for a few years now and its worked great with no problems.
Edited by - mike07 on 03 Aug 2007 00:36:30
Edited by - mike07 on 03 Aug 2007 00:36:51
Edited by - mike07 on 03 Aug 2007 00:36:30
Edited by - mike07 on 03 Aug 2007 00:36:51
Replied 11 Jun 2010 14:29:41
11 Jun 2010 14:29:41 jenny gawl replied:
Hello guys...,
I registered just to reply to this thread. Wow, Nice topic is going here... thing would interest me, so I'm in. and I too agree Paypal is cheaper and secure one..
I registered just to reply to this thread. Wow, Nice topic is going here... thing would interest me, so I'm in. and I too agree Paypal is cheaper and secure one..
Edited by - jenny gawl on 11 Jun 2010 14:29:57