PHP - Security what is best way?

Question

What is the best way to secure an intranet website developed using PHP from outside attacks?

Answer 1

I would echo @Oli and favour the VPN method if possible. However, if for any reason you need more arbitrary access than this, you should use SSL to secure any authentication. And in addition to password authentication / IP address authentication it would be well worth looking at using SSL with client side certificates.