What do I need to know for building aN auction website?

Im obviously going to use MySQL and php for the personal info and Data. Going to make sure the site is https. But I need to know what I need for such a website. Any certificates or extra software. Been building sites for sometime but this will be my first website that will have user accounts, global Data and the need for security. Please give me some advice.
Answer:

I know this is going to sound harsh, but my best advice is to not program it yourself. If you have to ask these questions, then you should not be doing it yourself. There are several areas where you need to be secure. ColinC mentioned a couple of good points, but there is so much more to be aware of. My advice is to hire someone to code with you, or at the least look over your scripts. A competent professional will be able to tell you where you are creating security holes and how to close them back up. I know this is not what you want to hear, but if you are located in the US, then you need to realize that you can be held liable for any information you receive and/or store. Which could result in millions of dollars out of your pocket. Hence why I suggest using a professional. Learn from them. Once you no longer need to ask this question (What do I need to know for building aN auction website?), then you will be able to write your own auction site. Cheers, Gitlez

1Man1God at Yahoo! Answers Visit the source

Was this solution helpful to you?

Other answers

Before you can use https at all you MUST buy certificates. Make sure there is no way for anyone to enter damaging data even in the login and password fields, this is an easy way for an attacker to take control of your site by entering oversized data, external script links, sql injection scripts or anything else similar. Otherwise your site will become a bank phishing site in about 2 days. Or worse a child porn distribution site. You will need to set yourself up a payment system, this will require making your data into a set to post to a secure payment gateway. So you really need to determine which gateway you are going to use to ensure you build your site round their data structure. NEVER store passwords in plain text in the database, always store them encrypted, then encrypt login entries and compare the copies. Do not put ANY database user details in the pages visible at the site, they must go into an include page from a different directory which is never going to be visible from the web..

Colinc

Related Q & A:

What do I need to know about Servers?Best solution by Programmers
What do i need to know to become a Graphic designer?Best solution by Yahoo! Answers
What do I need to know about buying a tv?Best solution by Yahoo! Answers
What do I need to know as a foreign exchange student next year?Best solution by answers.yahoo.com
Going to Spain for 20 days, what do I need to know?Best solution by Yahoo! Answers

Just Added Q & A:

How many active mobile subscribers are there in China?Best solution by Quora
How to find the right vacation?Best solution by bookit.com
How To Make Your Own Primer?Best solution by thekrazycouponlady.com
How do you get the domain & range?Best solution by ChaCha
How do you open pop up blockers?Best solution by Yahoo! Answers

For every problem there is a solution! Proved by Solucija.

Got an issue and looking for advice?
Ask Solucija to search every corner of the Web for help.
Get workable solutions and helpful tips in a moment.

Just ask Solucija about an issue you face and immediately get a list of ready solutions, answers and tips from other Internet users. We always provide the most suitable and complete answer to your question at the top, along with a few good alternatives below.