(08-23-2019, 02:13 AM)GregK954 Wrote: Thank you, yes this answered my question. As a suggestion in your payment box you may want to indicate that your making that third party call, perhaps a powered by Stripe as well. With Paypal it is never an issue as you are directed to a new page with paypal, not an iframe. In cases where it would be done in an iframe you would still see the paypal logo, etc. Just some food for thought.
Since you mentioned it was through Stripe I checked the page's code and indeed it is going to Stripe's servers, however should your servers ever be compromised it would not take much for a hacker to redirect that form to another site, and since it is hidden in an iframe it would not look any different to the end user.
I am a system administrator at a hosting company so I look for these things, both on and off the jobIf I had a dime for every hacked website I see in a year.. I would at least have enough buy a cup of tea. LOL
Thanks again.
Sincerely thanks for the suggestion, we can add "powered by Stripe" to our membership popup that knowledgeable users can verify. Whatever we can do to make our site more actually and apparently secure we appreciate! Ideally Stripe would provide identification that users could verify in their browser, if there's a way to do that with Stripe we'd love to know.