adamnreeves Posted April 3, 2006 Posted April 3, 2006 I placed an order on demon tweeks website this weekend and they had a problem authorisation. What did they do? They kindly sent me an email with all my credit card information in, yes, including the security code! Quote
Al Yupright Posted April 3, 2006 Posted April 3, 2006 I've had similar before where companies send you an "Order Confirmation" e-mail with all your card details in it. Quote
Bean Posted April 3, 2006 Posted April 3, 2006 I'd cancel that card straight away, get a new one with different number and pin code. Posting those details via email is outrageously dumb! Quote
steve_m Posted April 3, 2006 Posted April 3, 2006 If they are dumb enough to do that it makes you wonder what else is going on in their system ! Quote
adamnreeves Posted April 3, 2006 Author Posted April 3, 2006 I'd cancel that card straight away, get a new one with different number and pin code. Posting those details via email is outrageously dumb! You telling me it is. The only consolation I have is that I host my own email server so the email is not sitting on servers at my ISP. Still, the network packets have gone through various routers to get to my server. I must hope that none of those routers or networks are comprised and I that I have attacted undesirable attention from nasty man-in-the-middle hackers! What distro you in to? Quote
adamnreeves Posted April 3, 2006 Author Posted April 3, 2006 Post up the email Show me yours first! Quote
adhawkins Posted April 3, 2006 Posted April 3, 2006 What distro you in to? It has to be Debian Andy Quote
Mark B Posted April 3, 2006 Posted April 3, 2006 That doesn't surprise me with those dumb feckers, their "system" is bleedin hopeless at the best of times, I had a prime example the other week- Went into the store to buy some stuff, surprise, surprise they didn't have half of it in stock so agreed that they would send the remaining items on by post, one of the things I bought was a new airfilter for one of my throttle bodies. Two days after I thought, I'd like to change the other filter so they match etc so rang them up to ask if they could stick one in the same box as the other bits they were sending out to me, the answer was no they couldn't do that as their system wouldn't let them! What's so difficult about taking payment, then getting a bloke to put a box inside another box before it ships? Thankfully my dad was going that way at the end of the week so picked it up for me! Quote
KerryS Posted April 3, 2006 Posted April 3, 2006 I have just acquired another credit card with a specifically low limit for internet use, though persuading the card supplier that I really didn't want £n thousand limit was a bit of a struggle. I have done this in the belief that if the card number does become compromised my exposure before I spot it is limited. Kerry Quote
steve_m Posted April 3, 2006 Posted April 3, 2006 I have done this in the belief that if the card number does become compromised my exposure before I spot it is limited. Your exposure is nil to fraud, you are not liable under any circumstances for genuine fraud. As long as you've not gven your details to anybody to use then the card issuer is liable. Getting them to accept it can be another matter but they are liable for the loss not you. Quote
adamnreeves Posted April 3, 2006 Author Posted April 3, 2006 What distro you in to? It has to be Debian Andy Never checked Debian out. I have played with Redhat, SuSE and Fedora Core 4 is my latest toy! you into hosting aren't you. I have been playing with Xen which is kind of like VMWare, i.e. virtual hosts, but it is supposed to be better for performance. It's good makes setting up virtual hosts easy once you have one going. But you probably use apache and use virtual hosts under there. I think setting up virtual hosts under Xen is more secure. Quote
adamnreeves Posted April 3, 2006 Author Posted April 3, 2006 I have done this in the belief that if the card number does become compromised my exposure before I spot it is limited. Your exposure is nil to fraud, you are not liable under any circumstances for genuine fraud. As long as you've not gven your details to anybody to use then the card issuer is liable. Getting them to accept it can be another matter but they are liable for the loss not you. Yep, I think you are right regarding credit cards but not so sure if this applies to debit cards? I used my debit card. Quote
Al Yupright Posted April 3, 2006 Posted April 3, 2006 What distro you in to? It has to be Debian Andy Never checked Debian out. I have played with Redhat, SuSE and Fedora Core 4 is my latest toy! you into hosting aren't you. I have been playing with Xen which is kind of like VMWare, i.e. virtual hosts, but it is supposed to be better for performance. It's good makes setting up virtual hosts easy once you have one going. But you probably use apache and use virtual hosts under there. I think setting up virtual hosts under Xen is more secure. Get a room!!! Quote
adhawkins Posted April 3, 2006 Posted April 3, 2006 you into hosting aren't you. I have been playing with Xen which is kind of like VMWare, i.e. virtual hosts, but it is supposed to be better for performance. It's good makes setting up virtual hosts easy once you have one going. But you probably use apache and use virtual hosts under there. I think setting up virtual hosts under Xen is more secure. No question. However, Xen (or similar) is a lot more complex to set up etc., and often isn't worth the effort for simple shared hosting environments. Having said that, I haven't really looked into Xen, but I did have a play with UML a year or two ago. Oh, and Al, beggar off Andy Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.