Tell me what you think about my Website

kiropyckoticks

I have been making this website for 2 months while learning PHP, so far, this what I have done. If you have some suggestions, I am very glad to hear it..

http://www.ikodeko.com/
http://www.ikodeko.com/QuizBuilder/index.php

Thanks!

toplay

I see so many people finish a site and think about security afterwards (I saw your other post asking about session security).

Security items:

Your registration form has no captcha. I entered just a bad email and on the http://www.ikodeko.com/process_registration.php page got:

Notice: Undefined variable: suggest in g:\iKodeko\process_registration.php on line 57

Turn off errors from being displayed in production mode. Handle logging errors instead.

When I go to http://www.ikodeko.com/process_sign_in.php without logging in, I get:

Notice: Undefined index: username in g:\iKodeko\process_sign_in.php on line 11

Notice: Undefined index: password in g:\iKodeko\process_sign_in.php on line 12

No captcha in sign-in process either. Don't rely on register_globals being on. Turn it off and program accordingly (use $GET, $POST, etc. instead).

Delete the session cookie after user logs out and don't rely on them closing their browser.

Don't show that you use MySQL because it just will make it easier for hackers. You're already giving them a head start on how to inject SQL particular to MySQL.

If PHP security is new to you, I recommend buying this book (available for download):
http://www.phparch.com/shop_product.php?itemid=98

kiropyckoticks

Thanks a lot! I will. I just want to build a website so that I can have a practice on PHP.

Define-web_com

nice use of CSS, good basic layout.

How about adding a Demo Accout? for people who want to test drive without registering.

Also add some screensshots of subpages for users to checkout if they dont want to register.

nothing major to comments on. good luck,
Nilesh
Define-web.com

vaaaska

It's rather generic ain't it? The 'logo' at the upper left could certainly be a little more interesting couldn't it?

Jason_Batten

vaaaska wrote:
It's rather generic ain't it? The 'logo' at the upper left could certainly be a little more interesting couldn't it?

Generic, whats wrong with that?

Although, yes the logo could do with... something special.

Your site is good, could do with an about us page and a site map.

kiropyckoticks

Well, I am actually not good at graphics. My classmates say that I have no eye for graphics. hehehe. anyway, I will have that once I have a pretty secure and stable website and programming skills.

The purpose of quiz builder is to provide a review center for people who takes quizzes. I am still working on this and I think I am about 55% to 60% progress.

Yeah, I will place something like about 'me' and the site map, hmm, i will just finalize my thoughts on the site so you guys will not be misled by the sitemap. :-)

LoganK

I would agree with what most are saying here - the site has got to have a better layout. Currently, when I first went to it that plain text logo made me think of those "placeholder" sites that domain name registration companies put up when you type in a non-registered domain.

kiropyckoticks

Hehehe, you have not seen my previous layout, if you saw it, you will say that my layout now is far more better than before. hahaha.

anyway, I dont want you guys to focus with my layout design. I want you to see the contents. I am working on that part, the Quiz Builder, I want you to see it and tell me your comments or suggestions.

The function of that is to provide quizzes. I will be offline from October 8 to October 9. you can visit it on other times.