Announcement

**grinandcraftit** · 15-07-2009, 05:30 PM

I use OSCommerce and ZenCart for my shops and I've been looking into SSL. Like you, my brain is blown away, I only have customers contact details stored on our site at the moment and leave the secure payment details up to Paypal. Then the money part is taken out of my hands.

I am constantly trying to figure out the correct configuration as I don't want customers having problems with secure and unsecured elements on the pages.

I will be keeping an eye on this thread
Del

**0103media** · 15-07-2009, 06:00 PM

Its all depends..

SSL is https which basically encryption of form fields submitted over the web..

You get a lock symbol on your browser (normally at top but depends on what browser your using) ..

https is needed to take credit card (cc) info and NO uk merchant account will allow you to take CC info over the web without it.

regarding using a 3rd party e.g. paypal then all the https secure side of things is done by them..

hope that helps a little

**0103media** · 15-07-2009, 06:02 PM

Originally posted by grinandcraftit View Post

I am constantly trying to figure out the correct configuration as I don't want customers having problems with secure and unsecured elements on the pages.

You must not mix non https with http as warning will hit customer like mad.. If you using paypal then either put your logo in a secure area behind https or remove the graphic logo and just use text..

**genesis** · 15-07-2009, 06:17 PM

Thank you 0103media.

I understand the bit about SSL and https vs just http.

I think I might be confused with the whole email thing. I tried to set up email from Mr Site to link up to webmail or in my case Outlook & it doesn't seem to be working. I've put it down to the fact that my PC doesn't support SSL? Not sure if I have to buy a separate CA (Certificate Authority) or the fact that I already have a merchant account (only just got it) with PayPal is sufficient.

The reason for all of this is order confirmation etc.

Thanks for any further pointers.

**matt.chatterley** · 16-07-2009, 07:36 AM

Originally posted by grinandcraftit View Post

I use OSCommerce and ZenCart for my shops and I've been looking into SSL. Like you, my brain is blown away, I only have customers contact details stored on our site at the moment and leave the secure payment details up to Paypal. Then the money part is taken out of my hands.

I would personally suggest that you look into securing the collection of customers details too - certainly, under the Data Protection Act (are you registered, by the way, if your site stores contact details?) - you have an obligation to take "necessary steps" to ensure they are safe.

Essentially it's a due diligence issue, and I would feel a bit unsure transmitting them via a unsecured connection.

Not as critical as payment details, mind you - you're right there!

**matt.chatterley** · 16-07-2009, 07:38 AM

Originally posted by genesis View Post

Thank you 0103media.

I understand the bit about SSL and https vs just http.

I think I might be confused with the whole email thing. I tried to set up email from Mr Site to link up to webmail or in my case Outlook & it doesn't seem to be working. I've put it down to the fact that my PC doesn't support SSL? Not sure if I have to buy a separate CA (Certificate Authority) or the fact that I already have a merchant account (only just got it) with PayPal is sufficient.

The reason for all of this is order confirmation etc.

Thanks for any further pointers.

Ah. I think you mean that when you access bits of MrSite, the browser warns you that it 'doesnt support SSL'?

Which browser are you using?

If it's a very recent IE (7/8), then go into "Internet Options" -> "Advanced" -> "Security" and make sure that "Use SSL 2.0" and "Use SSL 3.0" are both ticked on

Ads

Announcement

E Commerce Security

E Commerce Security

Comment

Comment

Comment

Comment

Comment

Comment