Hello, Im wondering if there is a list of security do's out there somewhere, somethign that says like
"If you have a form that a user submits username/password:
You must encrypt password and (insert different security features here)"
or like if you ruploading a file what must you do to make sure its not a virus or anything?
stuff like that. just a rundown on what you need to do to properly secure your website.
i know you can never keep a website 100% secure, but there are simple easy ways of keeping your entire website
from being comprimised. just cant find a list of em all... =)
thanks..
-Sequalit
Security Must-Do's on a site?
Moderator: General Moderators
Re: Security Must-Do's on a site?
You can find a number of good articles at http://phpsec.org/library/..
As you already notice, validating all your input is important. The other important thing is to validate all your output (you don't want to be wide open for CSS/XSS attacks).
As you already notice, validating all your input is important. The other important thing is to validate all your output (you don't want to be wide open for CSS/XSS attacks).