One can never be too secure when it comes to online applications. PHP has its problems, making it a bit too easy sometimes to write back code that makes for insecure applications, but, thankfully, there are some simple steps to be taken to greatly reduce these risks. This article from PHPHacks.com shares some of the easiest.

Their recommendations are:

• Never, Ever, Trust Your Users
• Using Golbal Variables Correctly
• Handling Error Reporting
• Preventing SQL Injection
• Avoiding File Manipulation
• Avoiding Using Defaults
• Not Leaving Installation Files Online
• Avoiding Predictability

Oh, and my personal favorite, which is funny at first glance but seriously true when you really think about it "Be Completely and Utterly Paranoid".

One can never be too secure when it comes to online applications. PHP has its problems, making it a bit too easy sometimes to write back code that makes for insecure applications, but, thankfully, there are some simple steps to be taken to greatly reduce these risks. This article from PHPHacks.com shares some of the easiest.

Their recommendations are:

• Never, Ever, Trust Your Users
• Using Golbal Variables Correctly
• Handling Error Reporting
• Preventing SQL Injection
• Avoiding File Manipulation
• Avoiding Using Defaults
• Not Leaving Installation Files Online
• Avoiding Predictability

Oh, and my personal favorite, which is funny at first glance but seriously true when you really think about it "Be Completely and Utterly Paranoid".