Beefy Boxes and Bandwidth Generously Provided by pair Networks
Do you know where your variables are?
 
PerlMonks  

comment on

( [id://3333]=superdoc: print w/replies, xml ) Need Help??
After reading this thread and now that my current (side) project - a shopping cart implemented in Python with a "Send Comments" form written in Perl - involves credit card numbers, I would like to ask for the wisdom of the community.

I just sent an email to my client yesterday, telling him that the site I'm doing for him is now ready to be beta-tested. In that email I spent about 3 paragraphs emphasizing that even though (before the site goes live) I'll set up the site to use SSL, and a suitable encryption scheme for the emailing of the CC nums from the site box to his box, there are tools available on the Internet that allow even a "12 year-old no brainer to crack websites".

Now, clearly, my intention is to do everything I know of (and everything that $700 can pay for, because that's all I'm charging :) to make it difficult to crack. ie. the CC numbers are never written to disk, and as mentioned I'll be implementing SSL and likely PGP for the emailing of the CC nums.

But what is recommended to disclaim all liability for any consequences that may result from the operation of this site? Do I write out a liscense on paper and have him sign that document or something (eeek...this smells like lawyer's fees to make sure it's worded to be able to stand up in court). Is there a standard disclaimer I should put at the top of each source file? Do liscenses really buy you any safety in this situation? I'd be interested to hear your thoughts and your experiences.

As a point of note, I'm not too picky on the distribution terms (ie. GPL, BSD, Artistic, etc), but more concerned about disclaiming liability in a scenario for which I am clearly doing everything I know of to keep it secure, but still want to be able to sleep at night when the site goes live.


In reply to Licensing for Safety by mothra

Title:
Use:  <p> text here (a paragraph) </p>
and:  <code> code here </code>
to format your post; it's "PerlMonks-approved HTML":



  • Are you posting in the right place? Check out Where do I post X? to know for sure.
  • Posts may use any of the Perl Monks Approved HTML tags. Currently these include the following:
    <code> <a> <b> <big> <blockquote> <br /> <dd> <dl> <dt> <em> <font> <h1> <h2> <h3> <h4> <h5> <h6> <hr /> <i> <li> <nbsp> <ol> <p> <small> <strike> <strong> <sub> <sup> <table> <td> <th> <tr> <tt> <u> <ul>
  • Snippets of code should be wrapped in <code> tags not <pre> tags. In fact, <pre> tags should generally be avoided. If they must be used, extreme care should be taken to ensure that their contents do not have long lines (<70 chars), in order to prevent horizontal scrolling (and possible janitor intervention).
  • Want more info? How to link or How to display code and escape characters are good places to start.
Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others learning in the Monastery: (4)
As of 2024-03-29 04:49 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found