Would any of you experienced webmasters mind sharing a few simple ideas to increase security as I launch my php/mysql site? I’ve written the code with my real escape strings and have asked my provider to only allow access to the db from localhost. Error displays are turned off. Any other thoughts on security are appreciated. Thanks.
htmlentities function could be useful at times