Quote:
Originally Posted by Justin-Goldberg
I would hope only a one-way hashed version is stored a la unix crypt(3), and then only the last four digits. That's the standard for the pci industry, I'm assuming?
|
That is the standard, but if he was able to view the card number, it wasn't a one way hash.