-3

I have create a small social network with eCommerce and blog etc. I have create the site with PHP and JavaScript. Fully hand code and no plugin. I didn't upload it because of security. This is my first website and I have also create the database. Now my question is what is the security I have to look and How to protect from all kind of attacks? If there is any tutorial or book for it, give me this link.

AstroCB
  • 12,337
  • 20
  • 57
  • 73
Krishna Torque
  • 623
  • 1
  • 7
  • 17

1 Answers1

0

For SQL injection, use PDO properly and hacking is a very broad topic and there are tons of ways to hack a website. Check out OWASP.

And if it's your first website, I don't recommend using it as a real eCommerce website because you have a hell of a lot to loose if you get hacked.

Touch
  • 1,481
  • 10
  • 19
  • Also look into a paypal plugin, and then you wont really have to worry too much about getting your bank account hacked... paypal will secure the plugin for you – pattyd Jun 17 '13 at 15:17
  • That first sentence really doesn't make sense: "Use PDO properly and for hacking"... what? – pattyd Jun 17 '13 at 15:18
  • I mean something like "binding parameters" instead of using PDO like this **$stmt = pdo->query("SELECT * FROM someTable WHERE userId={$_POST['id']}");** Oh... and I am making an edit. I see what you mean. – Touch Jun 17 '13 at 15:21
  • 1
    Thank you guys. I would like to use paypal but they charge for transaction – Krishna Torque Jun 17 '13 at 19:04
  • Really? Oh, i didnt notice that, sorry! – pattyd Jun 18 '13 at 01:38