View the source of the page.  If the form submit's the data to an https://
url, then you should be able to consider it secure.  Many sites outsource
their card processing, and some card processors will accept data from a POST
operation to their site from the customers web page.  

Go over the HTML carefully though to be sure.



> -----Original Message-----
> From: andy at theasis.com [mailto:andy at theasis.com]
> Sent: Thursday, January 04, 2001 9:50 PM
> To: tclug-list at mn-linux.org
> Cc: TCLUG
> Subject: [TCLUG] OT: Secure web without https?
> 
> 
> 
> My naive understanding was that encrypted web transactions had to take
> place via https, via a different port than regular http. Yet I just
> encountered a site that claimed, 
> 
>         This is the final step in completing your order.
>         You are now connected to a secure directory where we
>         guarantee your information is being sent in encrypted form.
> 
> Yet there was no indication of https, nor any other cue I 
> recognized to
> give me confidence in the statement. 
> 
> What else might they be using that would still be secure, and 
> how would I
> be able to identify it before sending credit card info?
> 
> Thanks, 
> 
> Andy
> 
> _______________________________________________
> tclug-list mailing list
> tclug-list at mn-linux.org
> https://mailman.mn-linux.org/mailman/listinfo/tclug-list
>