Hi, everyone!
Here's the story. I'm using a VeriSign Payflow Pro account to perform live credit card transactions on my website.
The pfpro_process() function requires that one's VeriSign account password be passed as a parameter. I don't really want to include the password in plaintext within the PHP file in the event that some clever hacker gains FTP access to my site.
Does anyone know of a way to encrypt the password in an external file, or something similar (even within the same file) to prevent someone who manages to gain FTP access from having everything he or she needs to rip-off the company?
Any ideas are much appreciated!
Thanks 🙂
