Security noob here, need help...
Posted: Mon Jun 01, 2009 1:12 am
Heya,
So I'm launching my new site tomorrow and I built this puppy with a project manager from the ground up. Clients can update their contact information, that sends me an email with a vCard including the updated information, they can rate my work on their projects, assign tasks which are then published to a calendar, view and comment in existing designs, and a few other things. That being said, all of the files that enable a user to do those things are in a directory called "nodes", index.php includes those files when their requested by the user.
My question is, are those files secure? What can I do to ensure they are? I assume starting with preventing direct access using .htaccess?
Also, my database connection file is included in my root, is that secure?
Thanks! (And forgive my lack of intelligence with security, I know I probably sound a little ridiculous)
So I'm launching my new site tomorrow and I built this puppy with a project manager from the ground up. Clients can update their contact information, that sends me an email with a vCard including the updated information, they can rate my work on their projects, assign tasks which are then published to a calendar, view and comment in existing designs, and a few other things. That being said, all of the files that enable a user to do those things are in a directory called "nodes", index.php includes those files when their requested by the user.
My question is, are those files secure? What can I do to ensure they are? I assume starting with preventing direct access using .htaccess?
Also, my database connection file is included in my root, is that secure?
Thanks! (And forgive my lack of intelligence with security, I know I probably sound a little ridiculous)