|
-
August 15th, 2003, 02:39 PM
#6
Storing user data on a web server is a bad idea, just as storing unencrypted credit card information on your database is a bad idea. If you are doing online transactions you are best off trying to get a cc processor to do real time auth's for you and never storing anything more than a hash of the cc# or a first 4/last 4 span of the number for auditing/reporting purposes.
There is an excellent book on the subject of building an e-commerce system called: Designing Systems for Internet Commerce, Second Edition.
It runs you through everything you'll need to know.
Another book to check out is :Web Security, Privacy & Commerce, 2nd Edition by oreilly.
"When I get a little money I buy books; and if any is left I buy food and clothes." - Erasmus
"There is no programming language, no matter how structured, that will prevent programmers from writing bad programs." - L. Flon
"Mischief my ass, you are an unethical moron." - chsh
Blog of X
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote