Results 1 to 4 of 4

Thread: Security question

  1. #1
    Join Date
    Apr 2007
    Posts
    21

    Default Security question

    Hi !
    I paste this text from your lovely How- To Guides

    "With Just HTTPS, form submissions insure

    Worse still, the email may be stored on your server for some hours or days before you collect it. While it is stored, your customer's private information is viewable
    by people who have access to your server. "

    I don't understand this part by people who have access to your server.
    Do you mean by staff in my company or other people who has their website in the same server. Would you please explain this part for me ?

    Your sincerely
    Andre ( Sweden )

  2. #2
    Join Date
    Dec 2003
    Posts
    3,980

    Default Re: Security question

    Hi Andre,

    Let's say I send you this message by email:
    This is a great secret...tell no one.
    The email travels from my PC to my server to your server and awaits you to collect it.

    It's stored in files on your server, and anyone who can login to your server and has access permissions to the file that the email is stored in, can read the message.

    Depending on the security design of your server operating system and the security policy of your hosting provider, other people who share the physical server with you might be able to read the file and my secret message.

    The hosting provider's staff, can certainly read it.

    With a form submission using HTTPS, the message is secure until it is stored on your server awaiting collection from your email inbox.
    Russell Robinson - Author of Tectite FormMail and FormMailDecoder
    http://www.tectite.com/

  3. #3
    Join Date
    Apr 2007
    Posts
    21

    Default Re: Security question

    Ok ! Thank you for this info.

    Your Sincerely
    Andre

  4. #4
    Join Date
    Dec 2003
    Posts
    3,980

    Default Re: Security question

    Hi,

    Of course, that's where FormMailEncoder comes in. The form submission is strongly encrypted after it arrives on your server and before is sent to you by email.

    It is unreadable by anyone no matter how long it is stored on your server's email inbox (and if your mail box is on a different server to your form, it is safe during tranmission between your wbe server and your mail server).

    Only when you download it and decrypt it with FormMailDecoder, are you able to read it.
    Russell Robinson - Author of Tectite FormMail and FormMailDecoder
    http://www.tectite.com/

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Newbie question on open_basedir error
    By zenprofit in forum FormMail Subscription Support
    Replies: 14
    Last Post: 14-Feb-2005, 09:35 PM
  2. question about PHP version 4.3.8
    By djgotee in forum FormMail Subscription Support
    Replies: 4
    Last Post: 28-Nov-2004, 11:46 PM
  3. TARGET_EMAIL question
    By middleburyman in forum FormMail Subscription Support
    Replies: 1
    Last Post: 03-Sep-2004, 08:30 PM
  4. Uploading question
    By tray in forum FormMail Subscription Support
    Replies: 2
    Last Post: 11-Aug-2004, 09:31 PM
  5. at mangle / e-mail question
    By Ibis in forum FormMail Subscription Support
    Replies: 3
    Last Post: 25-Feb-2004, 02:59 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •