Possible Duplicates:
What security issues should I look out for in PHP
What should a developer know before building a public web site?
The project i was working on is nearly complete and near launching, but I want to make sure it is hack-proof as mine friend/partner thinks we have some enemies those can hire smart hackers to make the site down.
And if running my site securely under HTTPS, will help , will it be hard on CPU if I have a lot of users ?
Please tell me all security checks that are needed.
A couple suggestions:
1) Make sure and suppress errors; hackers can learn a lot about your application by being able to see them
2) Have good permissions set on your server for your web application; if a hacker is able to compromise a process on your server, they’ll have a harder time using/accessing other folders/files
3) I don’t know that https helps against hackers, except to the point that it will hide data transferred between the client and server (so that really depends on what your application is doing as to whether or not it is necessary)