[somebear]

But you do have to keep on top of whatever security holes there may be in your own code, and fix whatever bugs pop up. Hopefully before a XSS vulnerability is exploited.

[keithpeter]

For a low traffic site that is updated a couple of times a month, how about static pages with some scripting on the client machine? I use

    text files -> bash script calls markdown and adds header/footer -> another bash script generates indexes -> lftp syncs

[aseidl]

Jekyll/Octopress+Git http://octopress.org/

[keithpeter]

Thanks, I had seen Jekyll but this looks like Jekyll plus sensible defaults for a website with all the bells and whistles. My personal site has no bells, and I can't whistle too well. :-)