Imperva have found that hackers are now using Remote and local file inclusion (RFI/LFI), as their favourite hacking method. With RFI/LFI attacks making 21 percent of all observed application attacks, which allows an attacker to target the computer servers that run Web sites and their applications, what can we do to stop this kind of attack?