[Ilugc] do you need a CMS
- From: vkanakala@xxxxxxxxx (Vamsee Kanakala)
- Date: Thu Sep 10 12:01:37 2009
Prem Kurian Philip wrote:
As these CMSs are more frequently used, attacks against these CMSs will
also be higher and also also the people working on fixing these holes -
which is why you see lot more security patches in the more popular CMSs.
I basically agree to the argument that they are used more, and there are
more holes discovered - but that certainly doesn't explain the
_frequency_ at which the upgrades arrive - there are other open source
software used as widely as wordpress, if not more. You don't get
bi-weekly admonishments to upgrade or risk getting hacked into. (I tend
to take these warnings seriously, because I had bad experiences with
both WP and Drupal security-wise). Take the case of Apache, for example
- when was the last time you had to upgrade because of a security issue?
If you go for a completely static site, it would be only a matter of time
before you start adding dynamic elements to the site. It may start with a
signup form, a news ticker and soon before you know it, you will have your
own mini CMS.
I only recommended we go static way only for the main site - we just
need the functionality of a wiki, without the bother of managing spam.
The ability to checkout, modify and checkin updates to the site is
basically to avoid the notion of a signup form. That said, I didn't say
we need to go completely the static way - something like planet can only
be done effectively by a dynamic component.
Vamsee.
Other related posts: