The /dti/exchange/<db>/secure directory stores files containing private subscriber and account information, including credit card numbers, bank numbers, bank account numbers, social security numbers, and tax IDs. This directory can be made secure through UNIX/Linux, so that only authorized users are able to access it and the files stored within it.

Currently, this directory is used for refund files, credit card and bank draft interface files, and the Vendor Change Report export file. If you plan to restrict access to this directory, be sure that the permissions group you assign includes all users who need to create these files. The menu options that use this directory will be available only to users who have access to the secure directory. For other users, a message will be displayed indicating that they do not have the necessary permission.

When the secure directory is created, permissions are wide open by default. If you want to restrict this directory, you must do so through UNIX/Linux. Refer to your UNIX/Linux documentation for more information on restricting permissions to a directory.

When using Graphical Customer Service, access to the secure directory is determined by the user who started the Webspeed agent. If the user who starts the Webspeed agent does not have permission to the access the secure directory, then refunds cannot be entered.

To ensure access to the secure directory when using the graphical interface, the Webspeed agents should be started by a root process when the backup is finished or when the server is rebooted.