Security of a site

1

I would like to ask some questions. My site is protected against SQL Injection attacks as I am using MysQLi with bind in addition to external scripting to protect against this problem. And the HTTPS certificate is enabled and functional. Now the question that comes to me: does my site have to be attacked in any other way? I ran a greasy program called OWASP Zed attack and it returned me some crash alerts like XSS Header protection and some things that were more targeted to Internet Explorer. So the question that remains, is my site having to suffer some kind of attack or be subject to failure? If so, could you send me files or content to study? I would be very grateful.

Thank you for your time and sorry for anything. Good night.

    
asked by anonymous 19.04.2018 / 08:42

1 answer

0

My friend, this is a question that only has one answer "your site will never be fully protected" it may be making it difficult to attack types as it did protecting from SQL Injection attacks, but like for example how a site has it a limit of bearable connections in which if you do not set the maximum allowed connections (which in many sites is not done) a simple Dos or DDo attack can leave your site out of breath, this can be avoided if in your project determine the maximum quantity if allowed connections.

    
20.04.2018 / 19:22