Secure Site

jcantrell

This is a really easy, and probably pretty stupid question.

If I have a file in the httpdocs directory (unsecure directory) but I include a file from the httpsdocs directory (secure directory) I lost the secureness.

Is that correct? I think that's right, but I wanted to double check because it would be a lot easier for me.

That was the quick version, I'll elaborate a little more:

I have a signup page which posts to itself. If they select a paid membership, it has a check and include a ccform.php (credit card).

The ccform.php posts to process.php which handles the connection with the merchant account.

So, if I include the ccform.php from the secure site, do I lose the security? And does it matter, since the process.php is in the secure site, is it ok to pass the credit card stuff from the unsecure directly to the secure? I think not, but any help would be great!

AstroTeg

Any time the credit card number is to be sent from one machine two another machine, you should have SSL or some form of encryption on it. As long as you abide by this, you should be fine.