The NetTuts.com site has a new tutorial posted today sharing some tips about working with sensitive data in your applications and steps to secure it.
In my previous article, I showed you how to protect your server from attacks and malicious software. This part will focus completely on the third layer of security - your application itself. So here, I will show you techniques that you can use to protect your application from attacks and intrusions.
There's three main topics covered here, each with a few subpoints and some code examples:
- Using a Database
- Use a Salt When Hashing
- POSIX: Drop Privileges When You Don't Need Them