[dbuizert]

Good list, but what about security?

SQLInjections etc? You need to have that covered more than the rest in my opinion.

[jeffreyg]

I was a bit surprised to see no meniton of security. Any website checklist that includes backups because "your website data is too precious" should have a security assessment on that checklist.

[bigfudge]

How would you 'check' it, in the sense it could be on a checklist. Are there tools to automate this type of thing?

[dbuizert]

Good question. I did a quick Google search and here is a solution. http://sqlmap.sourceforge.net/

You could also let a program like Nessus run on your website. But that goes globally and will detect it.

[mtogo]

You can use the OWASP Top 10 as your checklist for security in many cases.

[dbuizert]

OWASP is an awesome project. If you really want to be secure use that as a guideline! Thanks for reminding me of that. I couldn't figure the name. All I could think of was WebScarab...