Jascar Posted September 22, 2005 Posted September 22, 2005 I will only be accepting PayPal as of now. At least untill I get a little more established. (Untill I can afford to pay a monthly $25 dollar fee on top of transaction fees...that would eat up ALL of my profits.) Now, I was wondering if I would even need SSL, considering when using PayPal, the purchaser is redirected to their secure pages. Wouldn't getting SSL be a waist, as all the transactions will occur over PayPal pages...and not my own?
dave111 Posted September 22, 2005 Posted September 22, 2005 Yes no SSL needed if using the standard paypal website payments.
Guest Posted September 22, 2005 Posted September 22, 2005 Yes you DO need SSL. Even if you're just using Paypal you still need to protect your customers private information (name, email, address, phone, etc) during the checkout process.
Jascar Posted September 22, 2005 Author Posted September 22, 2005 Yes no SSL needed if using the standard paypal website payments. <{POST_SNAPBACK}> As I thought, Thanks Dave. I just seen people on here using PayPal, and people saying they need SSL.
satish Posted September 22, 2005 Posted September 22, 2005 I will only be accepting PayPal as of now. At least untill I get a little more established. (Untill I can afford to pay a monthly $25 dollar fee on top of transaction fees...that would eat up ALL of my profits.) Now, I was wondering if I would even need SSL, considering when using PayPal, the purchaser is redirected to their secure pages. Wouldn't getting SSL be a waist, as all the transactions will occur over PayPal pages...and not my own? <{POST_SNAPBACK}> If you use Paypal VT (WPP) virtual terminal then you need SSL else as the payment is done at paypal site that is secured so SSL is not required. Satish Ask/Skype for Free osCommerce value addon/SEO suggestion tips for your site. Check My About US For who am I and what My company does.
Jascar Posted September 22, 2005 Author Posted September 22, 2005 Yes you DO need SSL. Even if you're just using Paypal you still need to protect your customers private information (name, email, address, phone, etc) during the checkout process. <{POST_SNAPBACK}> I don't require any of that info during check out. That info is esablished when they enter the PayPal page.
Mediajuggle Posted September 22, 2005 Posted September 22, 2005 Again stating you don't need SSL for reqular Pay Pal payments is absolutely false!!!! You still need to protect the names and addresses and passwords of the people who register at your site!!!! Some people don't seem to realize this but it is important! If that information is comprised then you leave you customers data open to theives who will now have their address and other information and their password and usernames. Since most people use the same password and username across multiple sites... thats definitely not a good thing.... My Contribution Music Download Store Template http://www.oscommerce.com/community/contributions,4275
Guest Posted September 22, 2005 Posted September 22, 2005 I don't require any of that info during check out. That info is esablished when they enter the PayPal page. <{POST_SNAPBACK}> Do your customers have to create and account with you?
Jascar Posted September 22, 2005 Author Posted September 22, 2005 Do your customers have to create and account with you? <{POST_SNAPBACK}> No they don't.
Guest Posted September 22, 2005 Posted September 22, 2005 No they don't. <{POST_SNAPBACK}> Are you using Oscommerce? If so how did you get around account creation and entering personal info during the checkout process? I know many people would like to do the same.
Jascar Posted September 22, 2005 Author Posted September 22, 2005 See thats the thing, I haven't implemented osCommerce yet. I did not know the program forced you to get personal details about your customers, especially having the PayPal option. With PayPal you allready have that info available to you, so why would you force it from your customers again? Is their another shopping cart that doesn't required personal details during check out? I might have to check out PayPals own shopping cart.
Guest Posted September 22, 2005 Posted September 22, 2005 Most shopping cart's that intregrate paypal do so by transfering the order info (including personal info) to paypal from your site. This is what Osc does. There are numerous free trial SSL providers that you could try out until you can purchase a cert.
Jascar Posted September 22, 2005 Author Posted September 22, 2005 Most shopping cart's that intregrate paypal do so by transfering the order info (including personal info) to paypal from your site. This is what Osc does. There are numerous free trial SSL providers that you could try out until you can purchase a cert. <{POST_SNAPBACK}> Thanks for bringing that to my attention, Two. I'm gonna check into PayPals own shopping cart first. If not, I'll have no other option, except to get the SSL
dave111 Posted September 22, 2005 Posted September 22, 2005 Again stating you don't need SSL for reqular Pay Pal payments is absolutely false!!!!You still need to protect the names and addresses and passwords of the people who register at your site!!!! Some people don't seem to realize this but it is important! If that information is comprised then you leave you customers data open to theives who will now have their address and other information and their password and usernames. Since most people use the same password and username across multiple sites... thats definitely not a good thing.... <{POST_SNAPBACK}> The information entered by customers on your actual site is their: Name Adress Email ANd a password which they make up Passwords are encrypted using MD5 (which can be cracked by takes about 30-1 hour for a 7 digit password, on a good computer) PER PASSWORD. Who is going to attempt to hack into this information in the off chance after spending 1 hour per password that the password they used on your site is actually the password they may use for their email account, in the off chance that access to their email account used on your site would give them information for anything which could be useful.... The "Hacker" would probably have a better chance standing on the street hoping a bag of money drop into your lap than doing this... The chances of this happening are almost 0, as hackers with this ability would never waste their time on something like this. If you are saying he needs an SSL, then you should also be saying that this forum needs an SSL, or ANY site which you need to create a password needs an SSL.
Guest Posted September 22, 2005 Posted September 22, 2005 The information entered by customers on your actual site is their: Name Adress Email ANd a password which they make up Passwords are encrypted using MD5 (which can be cracked by takes about 30-1 hour for a 7 digit password, on a good computer) PER PASSWORD. Who is going to attempt to hack into this information in the off chance after spending 1 hour per password that the password they used on your site is actually the password they may use for their email account, in the off chance that access to their email account used on your site would give them information for anything which could be useful.... The "Hacker" would probably have a better chance standing on the street hoping a bag of money drop into your lap than doing this... The chances of this happening are almost 0, as hackers with this ability would never waste their time on something like this. If you are saying he needs an SSL, then you should also be saying that this forum needs an SSL, or ANY site which you need to create a password needs an SSL. <{POST_SNAPBACK}> *shakes head* good luck on getting people to register and buy from an unsecured site.
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.