Luteno wrote:
Hi there!
My customer asked me about details of the encryption.
Can you tell me in what exact way the encryption works? What kind of encryption is used and what exactly will be encrypted if I use the feature?
Thank you very much in advance,
Fabian Kahlert
s2Member uses mcrypt_encrypt(), with MCRYPT_RIJNDAEL_256 / MCRYPT_MODE_CBC.
See: http://php.net/manual/en/function.mcrypt-encrypt.php
Here is what changing your Security Encryption Key WILL IMPACT in current versions of s2Member:
- It will kill any existing links that s2Member sent out in emails to your Customers; nullifying them all. Things like Registration Access Links and Specific Post/Page Links.
- It will ALSO kill all of the encrypted cookies that s2Member sets. Things like Specific Post/Page session cookies and registration access cookies.
- It will ALSO kill Download Keys created by s2Member ( if you've been using Download Keys ).
- It will ALSO change s2Member's Proxy IPN URL. This is NOT the default IPN URL that most people use, it's a special version of the IPN URL that contains an encrypted hash. This would need to be updated if the Security Encryption Key was modified ( but only if you've been using it ).
See: s2Member -> PayPal Options -> IPN Integration.Statistics: Posted by Jason Caldwell — October 28th, 2011, 12:29 pm
]]>