Author: Nico Erfurth Date: To: Kevin P. Fleming CC: exim-users Subject: Re: [Exim] Secure email->Webmail transaction question
Kevin P. Fleming wrote: >> Nope, the whole transaction is encrypted, the complete number is not
>> showed because of caching on the client-side.
>
>
> I could very well be mistaken, but I was sure that the encryption only
> happened
> on the client end (i.e. the server only decrypted, never encrypted). I
> don't
> think caching has much to do with it, the web sites just don't send the
> full
> number back on the "order complete" page. I always thought they did that
> because
> it wasn't encrypted, but maybe it's just because they want to be extra
> careful
> with that information.
I coded a webserver with ssl two years ago, believe me, everything is
encrypted, starting with the first byte of the transaction.