i was just wondering what you admins do for security? do you just run a windows server os with some AV? do you just close a bunch of ports? set all the dir and file permissions? what about you linux users? or CMS users? do you use CMs spacific security? how do you prevent SQL injections etc? a combination of the above?