Re: Encrypting a php page...

From: Tim Smith <reply_in_group@xxxxxxxxxxxxxxxx>
Date: Sun, 23 Mar 2008 21:23:47 -0700

In article <fs6jh7$1r0n$1@xxxxxxxxxxxxxxxxxx>,
daw@xxxxxxxxxxxxxxxxxxxxxxxx (David Wagner) wrote:

If your friend asks for and stores personal information, encryption isn't
going to protect his users if his site gets hacked. If your friend is

Doesn't that depend on what is done with the encrypted information?

On an e-commerce site I have had occasion to work on, the site that
accepts personal information (credit card numbers, for example)
immediately encrypts that information using a GPG public key.

Nothing on that server (or the LAN that server is on, for that matter)
has the private key. The encrypted information gets sent off for
processing to servers on a separate LAN, with a pretty restrictive
firewall between the two LANs.

A compromise on the upload server would allow someone to steal personal
information for new users, but that's a problem with most sites that
accept personal information. They would not get stored information.
(They would not even get encrypted stored information).

--
--Tim Smith
.

Follow-Ups:
- Re: Encrypting a php page...
  - From: David Wagner

References:
- Encrypting a php page...
  - From: Einstein
- Re: Encrypting a php page...
  - From: David Wagner

Prev by Date: Re: my KDF vs dictionary attacks
Next by Date: Re: my KDF vs dictionary attacks
Previous by thread: Re: Encrypting a php page...
Next by thread: Re: Encrypting a php page...
Index(es):
- Date
- Thread

Relevant Pages

Re: smbclient timeout, file truncated / 9.1 Pro (was Re: libpopt.so.0 conflict...
... >and the OS/2 machines on the LAN. ... NETBEUI was invented to allow windows clients to use an OS/2 server. ... 9 buffer small read and write requests until the buffer is full ... Acknowledgment Timeout ...
(alt.os.linux.suse)
Re: Indirect synchronization setup with no synchronizers on servers
... Replica Manager to be installed at all. ... trust any LAN, except the LAN where the file server is that stores my ... remote PCs have synchronizers but the server does not. ... There is no difference between a synchronizer operating on replicas ...
(microsoft.public.access.replication)
Re: Possible to secure WEP?
... It doesn't have to be a "server". ... this IP cannot be in the same class C IP block as your own LAN. ... To keep it simple, my gateway router, ... Ethernet adapter Local Area Connection: ...
(alt.internet.wireless)
Re: Can only connect to local RWW, over internet cannot
... OK, so now we know RWW works, and it is a function within RWW, the ability ... to 'Connect to Server' which is problematic, from inside the LAN. ... The 'Connect to server desktops' and 'Connect to my computer at work' ... RDP Proxy dynamically opens the connection to the requesting IP so at this ...
(microsoft.public.windows.server.sbs)
Re: VPN: Can connect but not browse or do anything
... With a workgroup, you have 2 master browser on 2 segments, and no way ... If you setup a domain, I'd recommend a DNS server, as WINS is legacy technique. ... all connected in a LAN behind a router. ... We need to share these 3 printers with the ...
(microsoft.public.windowsxp.network_web)