Page 1 of 1

PHP Security for Dummies

Posted: Fri Jan 09, 2009 4:29 pm
by soccio97
I purchased 94 ready made websites with Google, Amazon and eBay. It's kind of a hobby since I don't make enopugh to call it a business. Basically I have two domains (http://www.MyStudentLoanNow.com and http://www.TellMeAboutThat.com). TellMeAboutThat.com has 94 Sub-Domains.

TellMeAboutThat.com has been hacked twice in the last month. The first time they also got three (3) of the sub-domains and the last time one (at least that I've found). HostGator says it is a scripting problem and said I should get with the authors for updates. The problem is that I won the sites at eBay auctions and don't know who wrote them.

Although I've learned a lot, through trial and error, to help me improve and make changes to the site, I really know nothing about writing scripts or programming. I'm just a regular guy trying to make some change on the side and cannot afford $2,000 for the security programs offered online.

Can someone give me some basic PHP code for dummies and tell me where it goes so that I can protect my sites. The hackers really can't get anything as the sites are really informational and I do not collect visitors credit card, PayPal or other credit info. It's really just annoying and time consuming to fix.

Please help!!

Re: PHP Security for Dummies

Posted: Fri Jan 09, 2009 4:35 pm
by Eran
This thread should get you started - viewtopic.php?f=6&t=92167

Re: PHP Security for Dummies

Posted: Sat Jan 10, 2009 8:06 am
by soccio97
Thank you!! There's a lot of good information there and obviously a lot I have to learn.

Re: PHP Security for Dummies

Posted: Fri Jan 23, 2009 10:31 pm
by aschlosberg
I'd recommend Chris Shiflett's site and book:

http://shiflett.org/

The book is short and easy to understand yet very comprehensive. Security is not particularly difficult, it's a matter of the right frame of mind and knowing how to approach problems which Chris explains very well.

Re: PHP Security for Dummies

Posted: Sat Jan 24, 2009 7:48 am
by kaisellgren
I will be constantly updating my blog: http://phptalk.net

It's almost like php.net, but add word "talk" into it. :)