17488 Posts in 4473 Topics by 1978 members
|
Page:
1
|
Go to End | |
| Author | Topic: | 3180 Views |
-
how secure is SilverStripe?
15 May 2008 at 7:59pm
Hello,
Newly come here I must admit the demos and features of SilverStripe look great to me.
Before using SS on a production website I'd like to now how secure it is against hacking... is there, for instance, any systematic vulnerability check conducted... or any forum thread gathering exploits and patches... I found none of those.
Thanks for your comments.
-
Re: how secure is SilverStripe?
15 May 2008 at 9:58pm
The only incident I've heard about is this:
http://silverstripe.com/site-builders-forum/flat/41057But it seems it wasn't because of SilverStripe.
-
Re: how secure is SilverStripe?
18 May 2008 at 9:27pm
The most common security error I have come across is people not changing the default admin/password. Also running the site in 'Live' mode rather then 'Dev' mode on servers is also recommended as Dev mode will output error logs which may contain your DB details as I found out. If you have any recommendations or come across anything you think could be exploited feel free to let us know!
-
Re: how secure is SilverStripe?
19 May 2008 at 11:30am
Stating the the security of any bit of software is flawless is just inviting trouble, so I'm not going to claim that, however I can say that to date there have been no known security breaches of SilverStripe sites (and SilverStripe has been deployed on a range of very high profile sites).
There have been a few minor security related bugs which have been discovered over the past 18 or so months, which have all be resolved promptly and (to my knowledge) have never been exploited.
-
Re: how secure is SilverStripe?
20 May 2008 at 9:56am
Thanks for all these replies, and be sure I'll keep you posted when going on with my testing.
B.
| 3180 Views | ||
|
Page:
1
|
Go to Top |
