l...@work wrote: > hi, > 1. i decide to take up tomcat 6.0 .but how do i make the credit > card page secure.
That's a very broad question and not really a Tomcat support question. You may find this site useful: http://www.owasp.org/ > i am coding in java and is it possible to code the transactions without > storing information and pass it to the API's from payment processor. Yes. > 2.when i launch this site how do i ensure it's security .. Study security best practices. A lot. > so that people can freely use it as a secure site..what are the requirements > for it to be a > secure site. That's not really a Tomcat support question either. The CPI security specs are pretty explicit, though they are complicated. I suggest you start by reading your payment services providers documentation and doing follow up research on any concepts you don't understand. The good people of this list *may* choose to give you a tutorial on this topic, but most people are interested in solving actual problems with the server, which you don't appear to be having yet. p > thanks in advance. > > > Caldarale, Charles R wrote: >>> From: l...@work [mailto:surya...@gmail.com] >>> Subject: RE: can tomcat 5.0 run ejb's and support online >>> credit cardpayments >>> what do you suggest ..better to use ejb's with >>> jboss or write servlet in tomcat..which will have >>> less problems when it comes to integration with >>> the payment processr and security issues. >> If you're writing your own application, it shouldn't make any difference. >> If you obtain an application from somewhere else, you'll need to run that >> application in the kind of container the application is designed for. >> It's all up to you. >> >> - Chuck >> >> >> THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY >> MATERIAL and is thus for use only by the intended recipient. If you >> received this in error, please contact the sender and delete the e-mail >> and its attachments from all computers. >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org >> For additional commands, e-mail: users-h...@tomcat.apache.org >> >> >> > --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
