that might do it... but it seems a little redundant since (it sounds like) the credit card numbers are going to travel in unencrypted plain text from the clients machine to your web server... or are your running SSL over HTTP? -----Original Message----- From: Andrew Thrift [mailto:andrew(a)millenniumtechnology.co.nz] Sent: Thursday, 12 September 2002 09:39 To: Waikato Linux Users Group Subject: [wlug] Secure email transmission, GPG ? O.k. I have a PHP based web-shop that as an order is entered emails me the credit card details in un-encrypted form. What I want to do is use gpg to encrypt these mails with a secret key so that only I can read them. I have very little knowledge of the workings of PGP/GPG but from perusing the man pages and README I have figured I can take the following approach: 1. An order is entered, PHP dumps data to a temp file 2. gpg is called to encrypt this. 3. encrypted file is sent to myself using unix mail command. Is this the only way of doing it, or is their an easier way? Thanks, Andrew Thrift