smartrack.cgi config problem/cc securitygreenspun.com : LUSENET : S-Mart Shopping Cart : One Thread
I'm curious if anyone's "fixed" (with documentation) smartrack.cgi. I too am getting a server misconfiguration error.
I'd also like to request logging (instead of including in the email order), of selected order form fields. That way, you can store the cc# and cardholder fields in a log file on the server while emailing the experation date and month along with the order.
This is the approach Matt Wright and Craig Patchett have taken with their CGI Cookbook script FormHandler.cgi. Breaking the cc info apart appears to be the cheapest and easiest security to impliment, even though it means an extra step for the merchant.
-- dan enright (firstname.lastname@example.org), April 22, 1998