Security and You

There are few things more important than security when it comes to web applications. At Larking About, we take defense against security threats very seriously.

Security is important to protect the integrity of your application, your client's information and the computers of anyone who might visit your site!

Protection Against Attacks

There are allot of threats on the internet today and a surprising number of small websites are vulnerable.

Code that works does not always work well and can leave potential vulnerabilities. A clever visitor can exploit these vulnerabilities to steal information, alter your website or even insert malicious content that can harm other user's computers!

Fortunately, we can safeguard against these attacks and protect your valuable information!

It is always necessary filter, escape, sanitize and encrypt data, particularly input that comes from users or a database. The best defense is an "in depth" approach that has several sometimes redundant layers of security to protect against attacks.

Protecting Against Yourself

A big part of security that people often forget is to protect against yourself! Well meaning users or administrators can make mistakes that can delete, expose or tamper with data completely on accident.

Protecting against yourself requires allot of forward-thinking and designing under the idea of allowing access on a "need to know basis."

Best Practices

By following the security principles of "defense in depth," "least priviledge" and "simple is beautiful," your website will be properly protected from all kinds of attacks.

Some tricks for improving basic site security include hiding sensitive files behind the document root, encapsulation of data, and limiting database priviledges.

What this Means for You

Luckily, you don't need to concern yourself with any of the principles and practises discussed above. Larking About applications are designed to be very secure and we stand behind that.

I will patch any security issue that comes to light in the lifetime of an application I've designed for you, absolutely free, assuming no one else as worked on or altered the code.

In addition, I am available to diagnose your existing application for security vulnerabilties and both prescribe and administer patches to solve them.

Learn More!

If you are interested in learning more about Larking About security and options, please contact me!

For more information about security and PHP, please check out Chris Shiflett's website here.