i did a project for a client and the system has been in place for almost a year now without any problems…now an internal audit is being done and they are asking me for details of the security infrastructure of the site…and i have no idea what im supposed to provide??
the site is in php with mysql backend on a hosted dedicated server…there used to be a firewall, but it was decided that it was no longer needed, so the firewall was removed.
any advice on what it is im supposed to provide?
thanks!
