Your server, your database and your site’s security
- Do you host your own site, or is it hosted?
- How many sites are hosted on the same server as yours?
- What programming languages and platforms does it support?
- How many open ports and opportunities for interaction does it offer?
A lot depends on properly sanitizing input that comes from the client to your server and database. Different languages have different techniques (like Perl’s “taint” system), but if you fail to use them your site can be vulnerable to Cross-Site Scripting (XSS).
Assignment: XSS Me
Watch this video, install this Firefox Add-on and unleash it on your own site or your test sites: