SlideShare a Scribd company logo

Security tips to protect your website from hackers

Download as PPTX, PDF
E
Emillykelly

Security tips to protect your website from hackers

Technology
1 of 10
 Ensuring your software up to date is vital in keeping your site secure. This applies to both the server operating system and any software you may be running on your website such as a CMS or forum. When website security holes are found in software, hackers are quick to attempt to abuse them.
 SQL injection attacks are when an attacker uses a web form field or URL parameter to gain access to or manipulate your database. When you use standard Transact SQL it is easy to unknowingly insert rogue code into your query that could be used to change tables, get information and delete data.
 Be careful with how much information you give away in your error messages. For example if you have a login form on your website you should think about the language you use to communicate failure when attempting logins. You should use generic messages like “Incorrect username or password” as not to specify when a user got half of the query right.
 Validation should always be done both on the browser and server side. The browser can catch simple failures like mandatory fields that are empty and when you enter text into a numbers only field. You should make sure you check for these validation and deeper validation server side as failing to do so could lead to malicious code or scripting code being inserted into the database or could cause undesirable results in your website.
 Everyone knows they should use complex passwords, but that doesn’t mean they always do. It is crucial to use strong passwords to your server and website admin area, but equally also important to insist on good password practices for your users to protect the security of their accounts.
 Allowing users to upload files to your website can be a big website security risk. The risk is that any file uploaded however innocent it may look, could contain a script that when executed on your server completely opens up your website. If you have a file upload form then you need to treat all files with great suspicion.
 SSL is a protocol used to provide security over the Internet. It is a good idea to use a security certificate whenever you are passing personal information between the website and web server or database.
 Once you think you have done all, then it's time to test your website security. The most effective way of doing this is via the use of some website security tools, often referred to as penetration testing or pen testing for short.
ATEES EUROPE

Recommended

Food stamps
Food stampsFood stamps
Food stampsfragrom
 
Ile-Alatau National Park, Kazakhstan
Ile-Alatau National Park, KazakhstanIle-Alatau National Park, Kazakhstan
Ile-Alatau National Park, KazakhstanIUCNGPAP
 
Green Hope Reserve, Nicaragua
Green Hope Reserve, NicaraguaGreen Hope Reserve, Nicaragua
Green Hope Reserve, NicaraguaIUCNGPAP
 
Analisis de Encuestas
Analisis de EncuestasAnalisis de Encuestas
Analisis de EncuestasVanessa Sanjur
 
Mobistealth pro version
Mobistealth pro versionMobistealth pro version
Mobistealth pro versionfragrom
 
Именуем ресурсы для Windows 8 правильно
Именуем ресурсы для Windows 8 правильноИменуем ресурсы для Windows 8 правильно
Именуем ресурсы для Windows 8 правильноslavabobik
 
Vivo vitrothingamajig
Vivo vitrothingamajigVivo vitrothingamajig
Vivo vitrothingamajigKevin Thornton
 
Hlášky 4.A
Hlášky 4.AHlášky 4.A
Hlášky 4.Azluva
 

Recommended

Food stamps
Food stampsFood stamps
Food stampsfragrom
 
Ile-Alatau National Park, Kazakhstan
Ile-Alatau National Park, KazakhstanIle-Alatau National Park, Kazakhstan
Ile-Alatau National Park, KazakhstanIUCNGPAP
 
Green Hope Reserve, Nicaragua
Green Hope Reserve, NicaraguaGreen Hope Reserve, Nicaragua
Green Hope Reserve, NicaraguaIUCNGPAP
 
Analisis de Encuestas
Analisis de EncuestasAnalisis de Encuestas
Analisis de EncuestasVanessa Sanjur
 
Mobistealth pro version
Mobistealth pro versionMobistealth pro version
Mobistealth pro versionfragrom
 
Именуем ресурсы для Windows 8 правильно
Именуем ресурсы для Windows 8 правильноИменуем ресурсы для Windows 8 правильно
Именуем ресурсы для Windows 8 правильноslavabobik
 
Vivo vitrothingamajig
Vivo vitrothingamajigVivo vitrothingamajig
Vivo vitrothingamajigKevin Thornton
 
Hlášky 4.A
Hlášky 4.AHlášky 4.A
Hlášky 4.Azluva
 
Prezentace, která se měla promítat na stužkováku (14.11.2013)
Prezentace, která se měla promítat na stužkováku (14.11.2013)Prezentace, která se měla promítat na stužkováku (14.11.2013)
Prezentace, která se měla promítat na stužkováku (14.11.2013)zluva
 
Rich poor
Rich poorRich poor
Rich poorBaiju Goradia
 
Happy life 8
Happy life 8Happy life 8
Happy life 8Baiju Goradia
 
OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...
OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...
OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...openconext
 
MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...
MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...
MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...Vatsal Shah
 
Hitch hiking journalclub
Hitch hiking journalclubHitch hiking journalclub
Hitch hiking journalclubKevin Thornton
 
Halloween powerpoint
Halloween powerpointHalloween powerpoint
Halloween powerpointStefano Falsini
 
Strategy english
Strategy englishStrategy english
Strategy englishTarja Javanainen
 
CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES
CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES
CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES Mary Barrera Muñoz
 
Tips for choosing the right domain name
Tips for choosing the right domain nameTips for choosing the right domain name
Tips for choosing the right domain nameEmillykelly
 
Tips for real estate investors
Tips for real estate investorsTips for real estate investors
Tips for real estate investorsEmillykelly
 
10 things to check before buying a home or property in india
10 things to check before buying a home or property in india10 things to check before buying a home or property in india
10 things to check before buying a home or property in indiaEmillykelly
 
Breeds of dogs
Breeds of dogsBreeds of dogs
Breeds of dogsEmillykelly
 
Popular social media that people use
Popular social media that people usePopular social media that people use
Popular social media that people useEmillykelly
 
Easy photography tips
Easy photography tipsEasy photography tips
Easy photography tipsEmillykelly
 
How to Reduce stress
How to Reduce stressHow to Reduce stress
How to Reduce stressEmillykelly
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 

More Related Content

Viewers also liked

Prezentace, která se měla promítat na stužkováku (14.11.2013)
Prezentace, která se měla promítat na stužkováku (14.11.2013)Prezentace, která se měla promítat na stužkováku (14.11.2013)
Prezentace, která se měla promítat na stužkováku (14.11.2013)zluva
 
OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...
OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...
OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...openconext
 
MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...
MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...
MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...Vatsal Shah
 
Hitch hiking journalclub
Hitch hiking journalclubHitch hiking journalclub
Hitch hiking journalclubKevin Thornton
 
CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES
CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES
CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES Mary Barrera Muñoz
 

Viewers also liked (9)

Prezentace, která se měla promítat na stužkováku (14.11.2013)
Prezentace, která se měla promítat na stužkováku (14.11.2013)Prezentace, která se měla promítat na stužkováku (14.11.2013)
Prezentace, která se měla promítat na stužkováku (14.11.2013)
 
Rich poor
Rich poorRich poor
Rich poor
 
Happy life 8
Happy life 8Happy life 8
Happy life 8
 
OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...
OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...
OpenConext: Authentication & Authorization Infrastructure for Virtual Researc...
 
MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...
MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...
MPLS -Novel approach of multi protocol label switching for Asynchronous Trans...
 
Hitch hiking journalclub
Hitch hiking journalclubHitch hiking journalclub
Hitch hiking journalclub
 
Halloween powerpoint
Halloween powerpointHalloween powerpoint
Halloween powerpoint
 
Strategy english
Strategy englishStrategy english
Strategy english
 
CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES
CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES
CURSO DE SUPERACIÓN LENGUA CASTELLANA Y CIENCIAS NATURALES
 

More from Emillykelly

Tips for choosing the right domain name
Tips for choosing the right domain nameTips for choosing the right domain name
Tips for choosing the right domain nameEmillykelly
 
Tips for real estate investors
Tips for real estate investorsTips for real estate investors
Tips for real estate investorsEmillykelly
 
10 things to check before buying a home or property in india
10 things to check before buying a home or property in india10 things to check before buying a home or property in india
10 things to check before buying a home or property in indiaEmillykelly
 
Popular social media that people use
Popular social media that people usePopular social media that people use
Popular social media that people useEmillykelly
 
Easy photography tips
Easy photography tipsEasy photography tips
Easy photography tipsEmillykelly
 
How to Reduce stress
How to Reduce stressHow to Reduce stress
How to Reduce stressEmillykelly
 

More from Emillykelly (7)

Tips for choosing the right domain name
Tips for choosing the right domain nameTips for choosing the right domain name
Tips for choosing the right domain name
 
Tips for real estate investors
Tips for real estate investorsTips for real estate investors
Tips for real estate investors
 
10 things to check before buying a home or property in india
10 things to check before buying a home or property in india10 things to check before buying a home or property in india
10 things to check before buying a home or property in india
 
Breeds of dogs
Breeds of dogsBreeds of dogs
Breeds of dogs
 
Popular social media that people use
Popular social media that people usePopular social media that people use
Popular social media that people use
 
Easy photography tips
Easy photography tipsEasy photography tips
Easy photography tips
 
How to Reduce stress
How to Reduce stressHow to Reduce stress
How to Reduce stress
 

Recently uploaded

08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilV3cube
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 

Recently uploaded (20)

08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of Brazil
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 

Security tips to protect your website from hackers

  • 1.
  • 2.  Ensuring your software up to date is vital in keeping your site secure. This applies to both the server operating system and any software you may be running on your website such as a CMS or forum. When website security holes are found in software, hackers are quick to attempt to abuse them.
  • 3.  SQL injection attacks are when an attacker uses a web form field or URL parameter to gain access to or manipulate your database. When you use standard Transact SQL it is easy to unknowingly insert rogue code into your query that could be used to change tables, get information and delete data.
  • 4.  Be careful with how much information you give away in your error messages. For example if you have a login form on your website you should think about the language you use to communicate failure when attempting logins. You should use generic messages like “Incorrect username or password” as not to specify when a user got half of the query right.
  • 5.  Validation should always be done both on the browser and server side. The browser can catch simple failures like mandatory fields that are empty and when you enter text into a numbers only field. You should make sure you check for these validation and deeper validation server side as failing to do so could lead to malicious code or scripting code being inserted into the database or could cause undesirable results in your website.
  • 6.  Everyone knows they should use complex passwords, but that doesn’t mean they always do. It is crucial to use strong passwords to your server and website admin area, but equally also important to insist on good password practices for your users to protect the security of their accounts.
  • 7.  Allowing users to upload files to your website can be a big website security risk. The risk is that any file uploaded however innocent it may look, could contain a script that when executed on your server completely opens up your website. If you have a file upload form then you need to treat all files with great suspicion.
  • 8.  SSL is a protocol used to provide security over the Internet. It is a good idea to use a security certificate whenever you are passing personal information between the website and web server or database.
  • 9.  Once you think you have done all, then it's time to test your website security. The most effective way of doing this is via the use of some website security tools, often referred to as penetration testing or pen testing for short.