Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Need SSL to prevent fraudulent charges?


toltmanns

Recommended Posts

Posted

Running v2.2 RC2a

 

Wondering if we need to have SSL available and configured in order to prevent "fraudulent charges". I (the developer) tested out our authorize.net credit card processing and it had a strange issue. I purchased an item of $1 value. Each of three or four times of purchasing led to it being declined from my checking account (debit card), and being returned to an OSC page that said something like try again later couldn't be processed now. However, the project manager was able to get in and make a purchase fine no problem. One additional note is that my bank went ahead and put a freeze on the account.

 

So I wonder if I need to have an SSL cert hooked up to remedy the above issue. I've never used an SSL and am not 100% familiar with OSC, so any help would be greatly appreciated.

 

Thanks,

Troy Oltmanns

Posted

Yes, you should have an ssl account no matter what payment method you use. Otherwise, the customer information entered in create account is not protected and there is no way to secure the data in admin.

Support Links:

For Hire: Contact me for anything you need help with for your shop: upgrading, hosting, repairs, code written, etc.

All of My Addons

Get the latest versions of my addons

Recommended SEO Addons

Posted

Troy,

 

An SSL won't prevent fraudulent charges, it does prevent 'sniffers' from catching information while in transit to and from the site. The SSL encrypts information but does not check credit cards or anything like that.

 

Authorize.net only allows certain cards and sometimes determine the types of cards geographically. You should check with authorize.net to see what the problem might be.

 

 

 

Chris

Posted

Thanks for the responses.

 

I think I didn't get something across quite right. To clarify, the charges aren't fraudulent, per se, they were just picked up by my bank as questionable and I was wondering if that was attributable to the fact that there is no SSL, or if it's just my bank, rather than being an OSC issue.

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...