This page offers my opinion about the best ways of building web sites that are secure, high performance,. Not everyone will be able to implement my recommendations, so I'll describe a few scenarios for web design, starting with the most secure, and ending with lesser secure ways.

Don't design your website using a website

especially when your site and the developer site are on the same webserver. This eliminates such systems as WordPress.

Design locally and off-line

Maximize static pages

Use Open Source and Free tools