Some simple tips on running a website by Steve:

1. The prettier URLs are the better people can remember them.
   • Making pretty URLs with mod_rewrite is trivial.
   • Cool URIs don't change
2. Your server should never display sensitive information in error messages.
3. Session identifiers do not belong in URLs. See point #1.
4. Always check your server logs for application errors.
5. Always make sure you disable server modules/example scripts that you do not need. People will attempt to exploit them.
6. Meta-information is good. The more the merrier.
7. If you allow users to input text you must filter it.
8. Never ever store passwords in cookies. See point #7.
9. Having a test server to deploy system upgrades upon will save you.
   • See points #2 and #4.
10. Validate your code. Errors should be minimized, but it is not the end of the world if they are not.
11. Never ask Steve to design your site's look and feel
    • But feel free to give him a job managing your servers ;)
12. "Flash" adverts are annoying. Your site must be compelling or I will block them, or never return.
13. Backups are your friends.
14. Like many services you have legitimate grounds for refusing to serve particular people:
    • People who mass-download (without adequate delays) your site's pages are not your friends.
    • People who attempt to exploit security holes are not your friends.
15. When Mr. Operating System is unpatched we are not at home to Mr. Happy.
16. Links that open in a new window are evil.

Rant over.

P.S

This site now has over 2000 registered users.

W00t!