[Zope] Re: [ZCommerce] Secure storage of credit card info
Derek Simkowiak
dereks@kd-dev.com
Thu, 8 Jun 2000 18:31:13 -0700 (PDT)
-> I'd like to also have a one-box solution, though.
Ooh, that's bad JuJu. Keeping CC#s on the same box as your
webserver?
a) Pray there are no overflows/misconfigurations/etc. on the webserver
daemon.
b) Turn off EVERY other service on that box (even ssh has had a buffer
overflow). This means no remote system management (i.e. buy another
keyboard and monitor).
c) [After the Fact]: Wonder why you didn't choose to spend another mere
$1200 for a separate (Linux Oracle) server
In short, if you're worried enough to encrypt the database files
on disk, you're worried enough to have a separate database server.
--Derek