From: Brian Dunning
> My merchant provider levies monthly fines based on
> how many of their security restrictions you fail to
> follow. I follow as many as are reasonably practical,
> but I think it's virtually impossible to follow them
> all, such as absurdly expensive (and probably unnecessary)
That's a great suggestion. I will try this and report back. It's also been
suggested to me that I should have base64_encoded the encryptions before
storing them in MySQL, so I'll try this option at the same time.
On Mar 1, 2011, at 2:04 PM, Ashley Sheridan wrote:
> Onto the problem of the data
My merchant provider levies monthly fines based on how many of their security
restrictions you fail to follow. I follow as many as are reasonably practical,
but I think it's virtually impossible to follow them all, such as absurdly
expensive (and probably unnecessary) hardware. IMHO, some of the
On Fri, Feb 11, 2011 at 4:42 PM, Brian Dunning wrote:
> Hey all -
>
> I'm using mcrypt to store credit cards into MySQL. About 90% of them decrypt
> fine, but about 10% decrypt as nonsense ("b1�\�JEÚU�A���" is a good example).
> Maybe there is a character that appears in about 10% of my encrypti
On Tue, Mar 1, 2011 at 12:34 PM, Brian Dunning wrote:
> I just wanted to ping this, as it's becoming a serious problem. I hope
> someone can help.
>
>
> On Feb 11, 2011, at 2:42 PM, Brian Dunning wrote:
>
>> Hey all -
>>
>> I'm using mcrypt to store credit cards into MySQL. About 90% of them decr
I just wanted to ping this, as it's becoming a serious problem. I hope someone
can help.
On Feb 11, 2011, at 2:42 PM, Brian Dunning wrote:
> Hey all -
>
> I'm using mcrypt to store credit cards into MySQL. About 90% of them decrypt
> fine, but about 10% decrypt as nonsense ("b1�\�JEÚU�A���" i
On Feb 13, 2011, at 12:44 AM, Richard Quadling wrote:
> You are
> using addslashes($_POST['cc_number']). Considering a credit card
> number is purely numeric, the addslashes would seem to be redundant as
> you don't need to escape numbers.
I do that routinely to all input fields as one additional
On 11 February 2011 22:42, Brian Dunning wrote:
> Hey all -
>
> I'm using mcrypt to store credit cards into MySQL. About 90% of them decrypt
> fine, but about 10% decrypt as nonsense ("b1�\�JEÚU�A���" is a good example).
> Maybe there is a character that appears in about 10% of my encryptions th
8 matches
Mail list logo
