The best way to store credit card numbers is to have them encrypted when they are stored in the database, and decrypted when they need to be used, that way it will be safer for the most part On Mon, 2004-10-04 at 14:49, Ed Lazor wrote: > I'm looking at online stores and it seems like a lot of them maintain copies > of credit card numbers. Is this true? That seems like a "bad thing" to me, > especially in terms of liability and risk of hackers. On the flip side, it > seems like there are legitimate reasons. For example, if you bill the > customer when products ship, rather than when the order is received. Or, if > the customer decides to have instock items ship now and back ordered items > ship when they arrive - which results in two shipping charges. > > How do you guys handle this? > > -Ed -- Regards, Matthew Fonda -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
