I am in the throws of developing a web app. I am prototyping it to the client as we speak using latest install of xampp.
I have been told that the install, however, is not secure. Now I have messed around with my httpd.conf to disable autoindexing and the like, but my question is this.
What other areas warrant attention?