On Dec 19, 2007 4:45 PM, Bastien Koert <bastien_k@xxxxxxxxxxx> wrote:
>
> Nope, I still would not recommmend it. The only place the CC data should travel to is the payment gateway. Anything else is a security risk. Why does your client process by hand? They should be using a payment gateway.
That's true, Bastien, but if for whatever reason it's not an
option for them, what? Tell them it's tough cookies and they're SOL?
Our job as programmers - especially freelance - is to make things
happen as safely and securely as we can, but as a bottom line, make it
happen. I'm sure we (most of us) take the responsibility to
discourage a client from making such choices, and to educate them on
alternatives that are better for their interests, but still - at the
end of the day, we're still just code monkeys. We're expected to
build what the client needs, or else they'll find someone else to do
it for them.
And I don't really like to go hungry. ;-)
--
Daniel P. Brown
[Phone Numbers Go Here!]
[They're Hidden From View!]
If at first you don't succeed, stick to what you know best so that you
can make enough money to pay someone else to do it for you.
--
PHP Database Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
