How to secure my site?
Is there any book on topic "how to make my site super secure".I mean to be very resistant to cyber attacks and even immunized to some.
# Get a Digital Certificate [Web Server Certificate] for your server.
# Change your database table prefix - Use combination of alphabets and numeric characters.
These two steps would help you to make the site secure.
The answer to that question depends on the technology your website is based on, there are many books out there.
Originally Posted by hdjuujfgnbdgh
There are also a lot of ways to attack a website, SQLi and DDOS attacks are very different and require different measures of protection.
The first thing you should read about and learn how to avoid is injection attacks, cross site scripting, and sql injection should be at the top of your list.
I heard well enough of SQL injection but not DDOS. This is very first time I hear the attacking technique DDOS. Can you please provide short notes of it; how and at what circumstance it can be used to attack the websites?
Originally Posted by qdb
To answer your question - I would have to ask you many questions:
1. What is it that your site has which makes it a target for potential hackers ?
Note that a hacker's time is expensive. Unless you have something which is commercially valuable - no one will target you. Sure some script kiddie might take an undue interest - but then it is relatively easy to circumvent.
2. What do you mean by - 'super secure' ?
There is no such thing as 'super secure' in this world. It all depends on the motive. If it is accessible on the net - it can be compromised. All that they need to look for is the weakest link in the chain.
3. What kind of 'immunity' are you looking for ?
4. How much are you willing to pay for hardening your server ?
The answer to this depends on the answer to the first question. Server security is a serious subject. If you have anything of value to protect, you should be ready to spend top dollars to protect your assets.
DDos - Distributed Denial of Service - Orchestrate a number of compromised computers to target a server so that it is overwhelmed and rendered 'inactive'. For more details http://lmgtfy.com/?q=DDos