nanog mailing list archives

Re: CVV numbers

From: Scott Howard <scott () doc net au>
Date: Sat, 9 Jun 2012 14:34:03 -0700

On Sat, Jun 9, 2012 at 12:12 PM, Wayne E Bouchard <web () typo org> wrote:

The main weakness of CVV2 these days is "form history" in browsers.
(auto complete).



Any website requesting a CVV2 in a form field without the form
history/autocomplete being disabled is in breach of PCI compliance, and
risks losing their ability to accept credit cards.

That's not to say there aren't some that do it, but to call this the "main
weakness" of CVV2 is simply wrong.

  Scott

Current thread:

CVV numbers Hal Murray (Jun 09)
- Re: CVV numbers Lynda (Jun 09)
  - Re: CVV numbers Owen DeLong (Jun 09)
    - Re: CVV numbers Alexandre Carmel-Veilleux (Jun 09)
    - Re: CVV numbers Wayne E Bouchard (Jun 09)
    - Re: CVV numbers Barry Shein (Jun 09)
    - Re: CVV numbers John Adams (Jun 09)
    - Re: CVV numbers Scott Howard (Jun 09)
    - Re: CVV numbers Matthew Palmer (Jun 09)
    - Re: CVV numbers Jimmy Hess (Jun 09)
    - Re: CVV numbers Scott Howard (Jun 09)
    - Re: CVV numbers Aled Morris (Jun 09)
    - Re: CVV numbers Barry Shein (Jun 10)
    - Re: CVV numbers Barry Shein (Jun 10)
    - Re: CVV numbers Jay Ashworth (Jun 09)
    - Re: CVV numbers Owen DeLong (Jun 10)
    - Re: CVV numbers Gary Buhrmaster (Jun 10)
- Re: CVV numbers Joel Maslak (Jun 09)

(Thread continues...)