security issues when you make your web-site
when you make your new web-site then you need to careful that which operating systems is installed on server where you host your web-site. almost all content management systems are not hosted on windows server and because of that attackers get more targets and wide number of potential websites to hack. your website is easily hacked if you lack it in phishing, poor registration/login systems, cross-site scripting (XSS), web-site logic flaws used in site are completely independent of the operating system.
use firewall to protect your web-site
firewalls is one of the most important tools of as web server which is control traffic of the server. all web setver will see the web request and its can nobe filtered. web application firewalls can assist in protecting known vulnerabilities and unusual traffic but cannot usually provide protection against business logic vulnerabilities, custom code vulnerabilities, valid use that corrupts data and zero day (new) attacks. firewall can used in temporarily filtering traffic from the server when a vulnerability is discovered, but need to be thought of as a temporary fix rather than a permanent repair. Your internal employee’s access to the website may not even pass through the same firewall, or have different rules, and you may be using internal data feeds which are not screened.