Security of Files Sending to Email and Saving to Database

  • Resolved johnadams01

    (@johnadams01)


    3 years, 3 months ago

    Question is mostly re: security of form data on the server / processing forms.

    Have client that needs secure data uploaded via a form and sent to an email and stored in the WP database.

    But, need to ensure it will be 100% secure and during the process of it sending to the email, it could never be compromised.

    Using CF7 + CF7 Multiple File Upload Plugin along with Contact Form 7 Database and Flamingo as a backup database.

    Those that will be using the form will be uploading sensitive documents including bank statements, tax info, financials, etc (using CF7 and Drag/Drop Multiple File Upload for Contact Form 7): https://www.ads-software.com/plugins/drag-and-drop-multiple-file-upload-contact-form-7/

    Does anyone have experience in ensuring that these documents stay completely secure?

    – Im using WPEngine with SSL
    – Using Cloudflare
    – I’m going to password protect the directory where the files get uploaded to as well in the FTP.
    – Should i be using SMTP vs PHP to process transactions? I read it’s safer?
    – Was going to use WP Mail SMTP Plugin with Sendgrid or SendInBlue to process the emails.

    I need to make 100% sure that between uploading the files, pressing send, and when the server (or SendGrid / SendInBlue or another SMTP relay processes it), that they remain completely secure and the files could never get in the hands of anyone else.

    The site won’t be well advertised, but I still need to make sure.

    ALSO:
    Probably a bad question here, but are forms like WPForms or Gravity Forms Safer?

    Any help would be GREATLY appreciated!

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Glen Don Mongaya

    (@glenwpcoder)

    @johnadams01 , I understand your concern about security.

    Once the files are sent to the customer or to your email, it will be considered as public unless you keep the files as private.

    In order to protect the files just add password/security on your uploads folder, there are security plugins that will protect on that directory.

    WP Mail SMTP doesn’t protect files, it will only help sending the email.

    WPForms & Gravity Forms are also great plugins, these are very popular and trusted with millions of users.

    Thread Starter johnadams01

    (@johnadams01)

    Thanks @glenwpcoder !

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Security of Files Sending to Email and Saving to Database’ is closed to new replies.

Tags