RE: Wanting to learn 01-26-2013, 05:13 AM
#2
If your website uses SQL, make sure you protect from SQL Injection, which you can do from PHP.
Prevent XSS, which you can also do from PHP.
If you have a login, hash your passwords. (More hashes in an algorithm = better security)
If you have a login, add a function to deny access if they have too many requests in a short amoutn of time (to stop brute force)
If you store cookies, encrypt the cookies and hook it with something, (like IP) to stop cookie stealing.
Have an Anti-flood script.
Prevent XSS, which you can also do from PHP.
If you have a login, hash your passwords. (More hashes in an algorithm = better security)
If you have a login, add a function to deny access if they have too many requests in a short amoutn of time (to stop brute force)
If you store cookies, encrypt the cookies and hook it with something, (like IP) to stop cookie stealing.
Have an Anti-flood script.
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)