Dansie Shopping Cart
Dansie Shopping Cart
Frequently Asked Questions
Searchable F.A.Q.
FAQ Home
Show all FAQs

# 9: Permanent link
Question:
What is the safest and securest way to accept customers credit card numbers?

Answer:
The Dansie Shopping Cart works with various versions of PGP on both Unix and Windows NT hosts. It also works with GPG. For more details, see Secure Server Variable #10 in the ReadMe.
http://www.dansie.net/cart_readme.html
See also:
http://www.dansie.net/creditcards.html
http://www.pgp.com/
http://www.gnupg.org
http://en.wikipedia.org/wiki/Pretty_Good_Privacy

The Dansie Shopping Cart can append the credit card numbers to a datafile on your host. See Secure Server Variable #8 in the ReadMe. Then you can download them securely with your web browser via "https". An .htaccess and .htpasswd file can be placed in the same directory where the credit card numbers are being written to to prevent anyone else from accessing the credit card numbers with their browser without the password. See also:
http://www.dansie.net/creditcards.html

Some .htaccess tutorials are here:
http://hoohoo.ncsa.uiuc.edu/docs/tutorials/user.html
http://www.barmaton.nl/help/htaccess.html

You don't have a secure host to run the ssl.pl script on? Here is a secure host that can remotely host your ssl.pl script for you. They know about the Dansie Shopping Cart and understand your SSL needs:
https://www.stormer.com/dansie-ssl.html

cgi-bin browsing. Does your host have your site configured so that your cgi-bin directory can be browsed?
Go here:
http://www.YourName.com/cgi-bin/
If you see "Forbidden" or a similar message then that is good. If you see a listing of all the files in your cgi-bin directory and can view text files by clicking on them, that's NOT good. Ask your host to fix that so that your cgi-bin directory is NOT browsable. And don't have the cart append credit card information to directories that are browsable (SSV#8).



Dansie FAQ Wizard 2.0
http://www.dansie.net