Skip to main content

This site requires you to update your browser. Your browsing experience maybe affected by not having the most up to date version.

Showcase Questions

Feedback and questions about sites in the Community Showcase.

Moderators: martimiz, Sean, biapar, Willr, Ingo, swaiba, simon_w

Not accepted site for showcase


Reply

5 Posts   1368 Views

Avatar
danzzz

10 September 2011 at 12:54am Community Member, 175 Posts

I understand that new submissions to the showcase first must be verified ...
I sent in 2 URLs but only 1 was accepted. Both are SS sites.

How do you check if a site is made with SS?

Avatar
Ryan M.

10 September 2011 at 6:28am Community Member, 309 Posts

There is a meta tag in the head part of your website's source code that identifies SS.

<meta name="generator" content="SilverStripe - http://silverstripe.org" />

If you have a website profiler installed, you can pull a lot of useful information about what a website's running on. See the attached screenshot of a profiler I ran on my client's site in Chrome. It can be pretty interesting going around looking into what others are using. =D

Attached Files
Avatar
danzzz

13 September 2011 at 2:40am Community Member, 175 Posts

so they only accept sites with the "generator" meta tag :-)
I think they should check som /Security/* links

It's good practice to hide the used CMS.

Avatar
Ryan M.

13 September 2011 at 8:49am Community Member, 309 Posts

I don't think /Security/ links are a reliable indicator of a SS-based website because any other framework could be using the same URL segments.

You can remove the generator meta tag if you like, I believe it's overridden in _config.php. Do a search for it on this forum - there's a thread of mine about it that got an answer from Willr.

I don't think revealing which CMS you're using is a problem. Many hugely popular sites are known to run on Wordpress and it's not a security issue. Sure, any hacker could go check out the source code and look for vulnerabilities, but it all really comes down to how well you've locked down your server and implemented security measures in your application.

Avatar
danzzz

13 September 2011 at 10:32pm Community Member, 175 Posts

I'm with you in case of security implementations.
When checking /Security/... links you can identify SS sites often how the forms are generated, I was meaning that.