hamza Posted April 29, 2010 Share Posted April 29, 2010 i had made a website my client want 100% website security in it. plz guide me how i can test my website? for all possible attacks Quote Link to comment Share on other sites More sharing options...
Ken2k7 Posted April 29, 2010 Share Posted April 29, 2010 I doubt you can make a website 100% secure. You chose the wrong client lol. Quote Link to comment Share on other sites More sharing options...
darkfreaks Posted April 29, 2010 Share Posted April 29, 2010 http://www.symantec.com/connect/articles/securing-php-step-step could use mod security if they have a dedicated server and have access. other than that there webhost would have to install it for you, so you could use it. Quote Link to comment Share on other sites More sharing options...
hamza Posted April 29, 2010 Author Share Posted April 29, 2010 anyone else like to add Quote Link to comment Share on other sites More sharing options...
mattal999 Posted April 29, 2010 Share Posted April 29, 2010 Make sure you escape all possible inputs using mysql_real_escape_string() and you could even go https (Look up SSL) if you wanted to. Quote Link to comment Share on other sites More sharing options...
darkfreaks Posted April 30, 2010 Share Posted April 30, 2010 Look into getting mod security it covers MYSQL Injection/XSS(cross site scripting) with both post and get methods. you can also use mod security to check each referer and weed out CSRF (cross site forgery) attacks. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.