Securing websites

Frontend document permissions

Backend access permission

Banning an IP address

Preventing CSRF (Cross Site Request Forgery)

Preventing XSS (cross-site scripting)

Preventing SQL injection

How to force HTTPS (SSL) using .htaccess and mod_rewrite