[FX.php List] Anyone done a PHP integration w/ Paypal?
Glyn Devine
glyn.devine at quickseries.com
Thu Dec 5 09:55:15 MST 2013
Yeah, getting PCI certified is a piece of cake, all you need to do is fill
out a questionnaire on the web. In my experience most businesses that do
this lie on 90% of the questions. Getting certified is easy, actually being
compliant isn¹t quite as simple.
Glyn
On 12/5/13 11:53 AM, "Bob Patin" <bob at patin.com> wrote:
> I secured a set of web apps for another client, hired an outside consultant to
> get me PCI-compliant, but what I realized is that ALL he did was to wrap my
> POST variables like this:
>
> $name = htmlspecialchars($_POST[¹name']);
>
> This particular company runs a PCI-compliance test every month and we always
> pass, so getting PCI-compliant is a snapŠ
>
> I may tell this client though that I recommend using a hosted order page
> (using Paypal¹s card-input page)Š
>
> BP
>
> Bob Patin
> Longterm Solutions
> bob at longtermsolutions.com
> 615-333-6858
> FileMaker 9, 10, 11 & 12 Certified Developer
> http://www.longtermsolutions.com
> -
> iChat: bobpatin at me.com
> Twitter: bobpatin
> ‹
> FileMaker Consulting
> FileMaker Hosting for all versions of FileMaker
> PHP € Full email services € Free DNS hosting € Colocation € Consulting
>
> On Dec 5, 2013, at 10:18 AM, BEVERLY VOTH <beverlyvoth at gmail.com> wrote:
>
>> I have used iframes/frames to "spoof" not leaving the site, but I don't like
>> to do that anymore. I just tell the clients to be secure, use the secure
>> payment gateway as it's intended - they have the responsibility.
>>
>> Beverly
>
>
>
> _______________________________________________
> FX.php_List mailing list
> FX.php_List at mail.iviking.org
> http://www.iviking.org/mailman/listinfo/fx.php_list
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.iviking.org/pipermail/fx.php_list/attachments/20131205/bdb62917/attachment.html
More information about the FX.php_List
mailing list