Hello, i have written a PHP content management system, but i am not that great with security. Im just looking for links to articles, documentation or suggestions to help secure my system.

I realize that this is a vague question becuase there are many ways a hacker can attack a site, but Im just looking for some starting advice or standard ways to handle things. My cms has things like user authentication, forum, comments, etc.

thanks for any help.

You need to proctect againt PHP injections, make sure the login script is secrue. A good way is to store md5'd passwords in the DB and make sure that they are over say 6 charactors. There has been many threads on that too.

Just make your input section clean, depands on how much you want the client to do.

You could start with the Securyity section of the PHP Manual (http://www.php.net/manual/en/security.php).