2: Security Fundamentals
Although every chapter in the rest of the book will have some recommendations for improving the security of your Web site, security is such an important subject that this chapter focuses on it alone. There are three broad topics:
• Exploring general theory and background information
• Creating a secure environment
• Recognizing and combating common vulnerabilities
Some of the topics discussed here will be implemented in real-world code in subsequent chapters. A few of the other recommendations are steps to implement a single time. And a handful of tips will only apply if you have administrative-level influence over the server. Still, it’s only by grasping the whole picture that you can implement security on a high level. ...