Hi Francis, Security first of all beings with your web hosting server, the version and patches implemented, some prevent most site attacks and sql injections in the latest server versions and patches as for the templates the security is as good as the person who codes it, one good way to make your site is secure especially if you have restricted sections is to have random session numbers as these help reduce session hijacking (some else copying ur url and accessing the restricted section) and session replays (some copying the url and later re-using again and again to access restricted sections).
A second point is to have a little as possible executable script in your site, vbscript, javascript + + + as these have and continue to have many vulnerabilities. In summary when u buy a site online your usually buying its design and beauty. The security remains mostly up to the final site developer and the hosting server, i hope this answers your questions. Simon Everyday is a new day, making it a good day is what counts. ________________________________ From: Francis Otim <[email protected]> To: [email protected] Sent: Sun, March 28, 2010 7:46:18 PM Subject: [LUG] off the shelf site templates..secure? hello everyone, Ive been shopping around for a couple of business website and I've landed on some really well done sites at themeforest (http://themeforest.net/category/site-templates) for really good prices, ($10-50$) quick question...security, how secure are off the shelf site templates? is it possible to tweak the security settings to have a more robust site than when it comes? are there any other issues i should be aware of with these templates? many thanks. -- Kind regards Otim Francis Edge Consult (U) Limited P.O.Box 24961 Kampala Essami House Plot 52 Bombo Road [email protected] +256-70-2-614-634 blog: www.thismmindzs.wordpress.com twitter: @oparaah skype: mmindzs
_______________________________________________ LUG mailing list [email protected] http://kym.net/mailman/listinfo/lug LUG is generously hosted by INFOCOM http://www.infocom.co.ug/ All Archives can be found at http://www.mail-archive.com/[email protected]/ The above comments and data are owned by whoever posted them (including attachments if any). The List's Host is not responsible for them in any way. ---------------------------------------
