Secure?

[DeathStar]

HI there.

I want to know if my website is secure enough.

I asked someone once about this and they said:

I should make a fake bug and let the attacker try to exploit that bug and thus hiding the real bug?

 

My website is: http://www.GangsterTerritory.com

If anyone thinks anything else is wrong say to.. 

[redbullmarky]

well i'm no expert, but

 

1, what i tried failed (then again, so did the validation when registering, so...) so seems secure enough.

2, the advice you have been given (about a fake bug) to me just sounds ridiculously sloppy. Why would anyone create a bug to hide the real bug, when they can just use their time and efforts to fix the real one?

[DeathStar]

Okay.. Thanks

[obsidian]

Very clunky. It's hard to really test security when the only thing on there is a login script. There are a ton of ways you may leave your actual application open to hijacking without the login script itself being vulnerable. From what I can tell initially, you are screening your login pretty well, but once you actually have some more content for us to test (preferably with a test account), let me know.

[TheFilmGod]

I have an issue with your ad. It sounds very nosy and google will throw you of their search engine for eternity if you participate in the link traffic program. Its not "advertising" but getting a lot of ppl together to work together in a very sneaky and inappropriate manner.

[DeathStar]

Please tell me more "TheFilmGod"

 

I made an test account for testing:

--------------------

Username: test     

Password: death

---------------------

[Daniel0]

Just curious... how can your site be "BETA final"?

[TheFilmGod]

Google guidelines for high website optimzation:

 

"# You should never have to link to an SEO.

 

Avoid SEOs that talk about the power of "free-for-all" links, link popularity schemes, or submitting your site to thousands of search engines. These are typically useless exercises that don't affect your ranking in the results of the major search engines -- at least, not in a way you would likely consider to be positive."

 

To me that means, "Don't take part of your 'ad' scheme." Its a good idea, but be honest and work hard and you'll be treated with a higher rank by google. Its a tip!

 

 

[DeathStar]

Daniel0:

Transfered to another web host and just a few small bugs to sort out.

 

TheFilmGod:

Ill remove that then.

[AXiSS]

Nothing about security, but that big paragraph of run-on sentences at the bottom explaining the game doesn't make me want to play it. It makes me want to send you back to second grade.

[DeathStar]

Yes. I know...

I let my members choose things like that.

my age group on that site is from 8-18.

Set it to min of Teen(13) but still get people that isnt 13.