I'm trying to find a way to get someone's credit card information from an SSL server (I'll manually process the card).
Would it be safe to, when the user submits info, have my .asp page send me a PGP encrypted email with the credit card info?
On Poor Richard's web site, he talks about saving a text file to the server, but I don't understand how that's possible, because can't any file be downloaded from your server unless it's in a private folder? And I couldn't save a text file into a private folder because someone could just download the file that saved it in the first place to get the password.
Any help would be greatly appreciated. I'm currently using a real-time credit card processing service, but I really would rather do it manually. I heard that ICVerify was good software for this.