daydreamer Posted November 24, 2008 Share Posted November 24, 2008 Currently making a site in php with a mysql database. All I am doing is mysql_real_escape_string() before inserting anything, and also using captchas for my forms. I am not hosting my own web server so the hosting company should take care of that part. Could I be doing anything else to make my site more secure? Thanks. Link to comment https://forums.phpfreaks.com/topic/134022-overview-of-php-secuirty-what-should-i-be-doing/ Share on other sites More sharing options...
Mchl Posted November 24, 2008 Share Posted November 24, 2008 Conicidently there's pretty good tutorial on this site covering basics of PHP security. Link to comment https://forums.phpfreaks.com/topic/134022-overview-of-php-secuirty-what-should-i-be-doing/#findComment-697609 Share on other sites More sharing options...
mtoynbee Posted November 24, 2008 Share Posted November 24, 2008 This is a really good security article. http://php.robm.me.uk/#toc-HowcanIpreventSQLinjectionattacks Link to comment https://forums.phpfreaks.com/topic/134022-overview-of-php-secuirty-what-should-i-be-doing/#findComment-697611 Share on other sites More sharing options...
daydreamer Posted November 25, 2008 Author Share Posted November 25, 2008 thanks for the info. Link to comment https://forums.phpfreaks.com/topic/134022-overview-of-php-secuirty-what-should-i-be-doing/#findComment-698855 Share on other sites More sharing options...
bluesoul Posted November 25, 2008 Share Posted November 25, 2008 Also if you need to know what your host has enabled don't forget about ini_get(). Link to comment https://forums.phpfreaks.com/topic/134022-overview-of-php-secuirty-what-should-i-be-doing/#findComment-698894 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.