Hi All,
Just wanted to check that what all best practices which everybody uses to secure their websites,it can be even as simple as using the mysql_real_escape_string but if we get a check list so that we should not leave any loopholes atleast from our side and our knowledge.However if somebody really targets your website then at least you should have the basic defense.
So please share the common best practices which you generally use to secure your website.
***Please note even if it is about securing the server that would be an addon.
Thanks