View the source of the page. If the form submit's the data to an https:// url, then you should be able to consider it secure. Many sites outsource their card processing, and some card processors will accept data from a POST operation to their site from the customers web page. Go over the HTML carefully though to be sure. > -----Original Message----- > From: andy at theasis.com [mailto:andy at theasis.com] > Sent: Thursday, January 04, 2001 9:50 PM > To: tclug-list at mn-linux.org > Cc: TCLUG > Subject: [TCLUG] OT: Secure web without https? > > > > My naive understanding was that encrypted web transactions had to take > place via https, via a different port than regular http. Yet I just > encountered a site that claimed, > > This is the final step in completing your order. > You are now connected to a secure directory where we > guarantee your information is being sent in encrypted form. > > Yet there was no indication of https, nor any other cue I > recognized to > give me confidence in the statement. > > What else might they be using that would still be secure, and > how would I > be able to identify it before sending credit card info? > > Thanks, > > Andy > > _______________________________________________ > tclug-list mailing list > tclug-list at mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list >