Is there any reason the following setup wouldn't be secure?
Server 1:
- Shopping cart system that accepts credit cards.
- ASP, IIS, unknown database, SSL.
- I have very little access to this server.
Server 2:
- Used to customize additional content for Server 1 (cannot be done on Server 1 because I do not have access to a database on Server 1).
- Server 1 displays content from Server 2 database using a connection string, and displays images from Server 2.
- Shared host (bluehost.com).
- PHP, MySQL, Apache.
- SSL on web server and database.
- Remote connections are allowed to DB and can be made with SSL.
Server 1:
- Shopping cart system that accepts credit cards.
- ASP, IIS, unknown database, SSL.
- I have very little access to this server.
Server 2:
- Used to customize additional content for Server 1 (cannot be done on Server 1 because I do not have access to a database on Server 1).
- Server 1 displays content from Server 2 database using a connection string, and displays images from Server 2.
- Shared host (bluehost.com).
- PHP, MySQL, Apache.
- SSL on web server and database.
- Remote connections are allowed to DB and can be made with SSL.