-----BEGIN PGP SIGNED MESSAGE----- hi thomas,
a few points that could lead to confusion for people just getting started with the e-gold SCI... 1. the passphrase string that is included in the V2_HASH check is the MD5 hash of the alternate passphrase - not the passphrase itself. i.e. there are a bunch of components that make up the string that is then MD5'd to compute the V2_HASH. one of those components is the MD5 hash of the alternate passphrase for the payee's e-gold account. 2. all the fields are submitted to the STATUS_URL cgi parameter by e-gold. a subset of those fields are submitted by the customers browser returning from the e-gold site after making payment to your PAYMENT_URL page. it is not intended that you do anything significant on the PAYMENT_URL page - just say thank you or similar. the V2_HASH is *not* submitted to the PAYMENT_URL page. the customer may not even click the continue button to get to your PAYMENT_URL page - but the e-gold server will make a post to your STATUS_URL after the payment is made. jay w. [EMAIL PROTECTED] -----BEGIN PGP SIGNATURE----- Version: PGP 7.0.4 iQEVAwUBPeBYHMyM0YPqVE7FAQEW0gf/eovKsIioxcEyCbMgLnDJ+6VC37y3jtNx yYXK4nwOTREft6HAOkguAnmHt6zIu1vFetZTd1fQZBbKdoHSQIH7Y04Wcair9Zut xrroG62yNmkcLESJsxHhlm2SWKMobmqBAEvWKdj94HdZ9O9AccuPVoc+gbSMabCW jcXaFgW7wGx9pieqwM4Rv44nofb4N5xi32qkcSbiftFmQCqQ1lnAzJQek2E6tUJl qNt/+VfN5edmACAYz3znhC0xQREmd3pTTawpbBnTjbk2mShSZK7Hf/GiEs5SzAJL wI8wzRqWfjBuvSz2a3K57AyDwPke8Y1gV5z7Y+4CWe3Cc3+ZSG+pRg== =tZFi -----END PGP SIGNATURE----- [EMAIL PROTECTED] wrote: > Hi! Just want to say good service. Im developing an Egold payment system ... --- You are currently subscribed to e-gold-tech as: archive@jab.org To unsubscribe send a blank email to [EMAIL PROTECTED] Safe web surfing tip: Get in the habit of checking the SSL key/padlock icon in your browser and address/location bar *before* submitting sensitive information like your e-gold passphrase.
