it saves credit card info to database, so admin can bill these members manually, using POS terminal for example. I DON'T RECOMMEND this plugin to ANYBODY .
Any thoughts about writing this to SSL encrypt the CC Number, and have the admin type in a certain passcode everytime they want to view it. All other times just show last 4 digits? I could probably start hashing it out, but don't want to do it on a live system....
I installed the free edition to test whether it would run off an SSL account hosted off a service provider and it seems to. I take it then, the credit card number data is secure when being processed ie: uploaded from the person's browser, but is insecure when sitting in the MySQL database online? Thanks, Rick
Rick, it is why I'm going to shut forums down We were talking not about regular things... When you are using credit card plugin like Authorize.Net or LinkPoint, credit cards will be stored in database in encrypted form or not stored at all. Nobody is able to see these data.
I believe I understood that using real time credit card authorization services would encrypt the data, but the manual_CC plugin, just leaves the CC data unencrypted in the MySQL database online. I guess the issue is, how secure is an online MySQL data base (I'm posing a hypothetical question - not asking anyone here ;-), also assuming it's not on the secure server - so the "hacker" / crook would have to find out on what other server the database was stored. Rick