Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

SSL


Guest

Recommended Posts

You need to purchase an SSL certificate for your server and set it up. Once you do this you'll need to open:

catalog > admin > includes > configure.php

 

and edit your SSL definitions. These should also be setup in:

catalog > includes > configure.php

 

... to secure the checkkout process in your cart.

 

If you don't have an SSL certificate already, I highly recommend GeoTrust (http://www.geotrust.com).

Link to comment
Share on other sites

You need to purchase an SSL certificate for your server and set it up.  Once you do this you'll need to open:

catalog > admin > includes > configure.php

 

and edit your SSL definitions.  These should also be setup in:

catalog > includes > configure.php

 

... to secure the checkkout process in your cart.

 

If you don't have an SSL certificate already, I highly recommend GeoTrust (http://www.geotrust.com).

Does this then make your own webspace secure?

Link to comment
Share on other sites

It means that the 'login' and 'create account' and 'view account' areas of your website, along with parts of the checkout process will be secured behind the ssl. It also means, with some adjustments, that you can secure all of your 'admin' folder behind the ssl (still needs to be password protected though).

 

Vger

Does this then make your own webspace secure?

Link to comment
Share on other sites

It means that the 'login' and 'create account' and 'view account' areas of your website, along with parts of the checkout process will be secured behind the ssl.  It also means, with some adjustments, that you can secure all of your 'admin' folder behind the ssl (still needs to be password protected though).

 

Vger

Does it do away with the need to purchase https webspace? Forgive my greenness on the subject

Link to comment
Share on other sites

You may not need to purchase an SSL certificate. Ask if your host offers "shared SSL" for free. Many do.

 

Once you have SSL/https available to you, simply change the HTTP_SERVER line in admin/includes/configure.php to be your https URL base, and use the appropriate https URL to access your admin home page.

Link to comment
Share on other sites

You may not need to purchase an SSL certificate.  Ask if your host offers "shared SSL" for free.  Many do.

 

Once you have SSL/https available to you, simply change the HTTP_SERVER line in admin/includes/configure.php to be your https URL base, and use the appropriate https URL to access your admin home page.

Looks like I may have to purchase seperate secure hosting then. This is a direct quote from my hosting suppoert;

Thank you for your email.

 

We do not support SSL connections on our shared hosting packages such as the xxxxx xxxx account that you are on due to the requirements of an SSL connection at the current time. If you are after an SSL connection to take card payments, have you considered using a third party payment processor like http://www.netbanx.co.uk or http://www.worldpay.co.uk as they can process the payment have the SSL connection. This also means you do not need to worry about storing card details yourself

Link to comment
Share on other sites

Well, that stinks. Customers won't like even filling in their address and e-mail without a secure connection. I would suggest looking for another host - the forum rules don't seem to allow me to make suggestions here (any time I do they are deleted), but feel free to send me a PM or e-mail and I'll let you know who I use.

Link to comment
Share on other sites

Yes, I would say you might have to move on to another host.

 

Their reply isn't totally accurate also. Even by using a third-pary such as Worldpay, you still need an SSL connection to secure your client's sensitive info (name, address, etc.)

You should never consider storing cc info on the server anyway

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...