I making a script that allows people to sign up and login on my site, using sql, it works fine, but What are some tips on making things nice and secure?
I'm already using md5() and making the script sleep(1) if they gett the password wrong, so they can't just use guessing progs.
is there anything else I should do? I want this to be really secure.
