daydreamer Posted November 24, 2008 Share Posted November 24, 2008 Currently making a site in php with a mysql database. All I am doing is mysql_real_escape_string() before inserting anything, and also using captchas for my forms. I am not hosting my own web server so the hosting company should take care of that part. Could I be doing anything else to make my site more secure? Thanks. Quote Link to comment Share on other sites More sharing options...
Mchl Posted November 24, 2008 Share Posted November 24, 2008 Conicidently there's pretty good tutorial on this site covering basics of PHP security. Quote Link to comment Share on other sites More sharing options...
mtoynbee Posted November 24, 2008 Share Posted November 24, 2008 This is a really good security article. http://php.robm.me.uk/#toc-HowcanIpreventSQLinjectionattacks Quote Link to comment Share on other sites More sharing options...
daydreamer Posted November 25, 2008 Author Share Posted November 25, 2008 thanks for the info. Quote Link to comment Share on other sites More sharing options...
bluesoul Posted November 25, 2008 Share Posted November 25, 2008 Also if you need to know what your host has enabled don't forget about ini_get(). Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.