Form mail security

Posted on 2008-02-01
Medium Priority
Last Modified: 2008-03-06
What is the best way to handle sensitive information within a form on my site (linux hosting).  Is there a way of encrypting the data?
Question by:chadaort

Expert Comment

ID: 20797465
You should host the page on an SSL site to make sure that any form data submitted is encrypted whilst being transfered from the users pc to your server.

You do this when setting up the website (so the address of the page starts http rather than https  , not when writing the form processing code in php.
LVL 36

Expert Comment

by:Loganathan Natarajan
ID: 20798045
you might write your own encryption & decryption algorithm and pass the information...
LVL 44

Accepted Solution

scrathcyboy earned 2000 total points
ID: 20802158
The only problem with "sensitive" info is having it appear in the HTML page, where everyone can see it.  You make a FORM in a standard HTML page for user input, this FORM submits to a PHP page, which takes the POST input, and processes it on the server.  Any PHP page on the server cannot be seen by the user, all sensitive info in it is not visible to the user.  Then the PHP processes the form input, matches it up to the sensitive data, and if it is logins and passwords, for example, the PHP can send an email or whatever you want to do without any further interaction from the user.  All you need to do from the PHP pages is to tell the user -- Hey your actions were approved -- or something like that.  Form input and server side processing of a form to do something, like an order or an email, typically takes several PHP pages, it is the best / fastest.

Featured Post

The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Originally, this post was published on Monitis Blog, you can check it here . In business circles, we sometimes hear that today is the “age of the customer.” And so it is. Thanks to the enormous advances over the past few years in consumer techno…
This article covers the basics of data encryption, what it is, how it works, and why it's important. If you've ever wondered what goes on when you "encrypt" data, you can look here to build a good foundation for your personal learning.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
Suggested Courses

589 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question