SSL Secure Server

SSL Secure Server
SSL stands for Secure Socket Layer. It is an emerging standard developed by Netscape Communications to transfer information securely across the Internet. SSL will enable your customer's browser to connect to your web site and transparently negotiate a secure communication channel. Once this connection has been made, information, like credit card numbers, can be exchanged securely.

Please note that SSL does not include software to process credit card transactions. Although you can securely receive credit card information through SSL, actual processing of the credit card will require a "Merchant Account" from an accredited financial institution.

How to implement an SSL secure connection:
If you have a link to an order form, for example, from your home page, you would need to use a URL similar to following:

  • https://secure.elosoft.com/<your-userID>/orderform.html (if you are using our digital certificate)
  • https://secure.your-domain.com/orderform.html (if you have your own digital certificate)
The "s" in https:// suggests an SSL related file.

If the secure form calls a cgi script, you must also reference that script securely.
  • <form method="post" action="https://secure.elosoft.com/<userid>/cgi-local/order.cgi">
    (if you are using our digital certificate)
  • <form method="post" action="https://secure.your-domain.com/cgi-local/order.cgi">
    (if you have your own digital certificate)
Note: If you upgrade or downgrade your account and a server change is required, you will need to update your URL links to reflect a new server number.


Retrieving Data From Server
As mentioned above, the secure environment refers to the transmission of information between web browser and web server. We suggest that you have a script written to save the submitted form content to a text file. In so doing, you can reference the text via secure URL and retrieve its content (e.g. credit card information) securely via the web thus completing the loop.

  • https://www.elosoft/<userid>/datafile.txt (if you are using our digital certificate)
  • https://www.your-domain.com/datafile.txt (if you have your own digital certificate)
An alternative is to have the submitted form content sent to you via e-mail. If your form references a custom script, you will need to reference the script securely. E-mail messages are not secure, unless you encrypt them using a third-party encryption program.


[back]