Wiki Idea Shot Down
-
To keep your WP site secure:
- KEEP IT UPDATED, ALWAYS! THEME, PLUGINS, WP, EVERYTHING!!!
- Wordfence Security plugin
- Securi Security plugin
Take the steps those plugins recommend to secure your WP site.
-
I've always used Drupal. IMO probably the most secure and flexible CMF there is and built with PHP. Just sounds like someone making excuses.
-
@stacksofplates said in Wiki Idea Shot Down:
I've always used Drupal. IMO probably the most secure and flexible CMF there is and built with PHP. Just sounds like someone making excuses.
Yeah tons of things are built with php. I've never tried Drupal but I suppose I will have to experiment sometime.
-
@jmoore said in Wiki Idea Shot Down:
@stacksofplates said in Wiki Idea Shot Down:
I've always used Drupal. IMO probably the most secure and flexible CMF there is and built with PHP. Just sounds like someone making excuses.
Yeah tons of things are built with php. I've never tried Drupal but I suppose I will have to experiment sometime.
ALmost everything is. Even Facebook and Wikipedia.
-
@jmoore said in Wiki Idea Shot Down:
@stacksofplates said in Wiki Idea Shot Down:
I've always used Drupal. IMO probably the most secure and flexible CMF there is and built with PHP. Just sounds like someone making excuses.
Yeah tons of things are built with php. I've never tried Drupal but I suppose I will have to experiment sometime.
The learning curve is fairly steep but once you're over the hump you'll never want to use something else. It's kind of weird it's a really steep learning curve but it's super easy (like minutes) once you understand how to use it.
-
Well it is a programming language in its own way so not really surprising that it takes a while to learn. I only know basics and enough to be dangerous
-
@jmoore said in Wiki Idea Shot Down:
Well it is a programming language in its own way so not really surprising that it takes a while to learn. I only know basics and enough to be dangerous
He means Drupal, not PHP
-
Oops! My fault, your right
-
PHP ranked one of the more secure languages for web development: https://gcn.com/articles/2014/04/24/programming-language-security.aspx?s=gcntech_250414
-
@scottalanmiller Well that is interesting. So any idea what these vulnerability scans were he said he ran that kept giving up php as the culprit?
-
@jmoore said in Wiki Idea Shot Down:
@scottalanmiller Well that is interesting. So any idea what these vulnerability scans were he said he ran that kept giving up php as the culprit?
Probably old versions of PHP that needed to be updated 10 years ago. Another example of "keep your shit up to date."
-
I didn't read every post here, but your boss is wrong. An internal wiki is a fantastic way to document and i have no idea what he's talking about. It sounds like you're in a similar position as I am where all logic is discarded for seemingly no real reason.
-
@jmoore said in Wiki Idea Shot Down:
@scottalanmiller Well that is interesting. So any idea what these vulnerability scans were he said he ran that kept giving up php as the culprit?
Given everything else described, it is pretty safe to assume he's either just making it up or is not properly maintaining his system and the results are actually telling you that you have a security problem in your IT management.
-
@scottalanmiller said in Wiki Idea Shot Down:
@jmoore said in Wiki Idea Shot Down:
@scottalanmiller Well that is interesting. So any idea what these vulnerability scans were he said he ran that kept giving up php as the culprit?
Given everything else described, it is pretty safe to assume he's either just making it up or is not properly maintaining his system and the results are actually telling you that you have a security problem in your IT management.
I'm guessing something like Nessus. We have a couple appliances with web interfaces that we can't update and they show up on scans. It's nothing you can change and means nothing about PHP. Anything is a vulnerability if you don't maintain it.
-
@stacksofplates said in Wiki Idea Shot Down:
I'm guessing something like Nessus. We have a couple appliances with web interfaces that we can't update and they show up on scans. It's nothing you can change and means nothing about PHP. Anything is a vulnerability if you don't maintain it.
Purely Windows here too btw
-
@scottalanmiller said in Wiki Idea Shot Down:
Given everything else described, it is pretty safe to assume he's either just making it up or is not properly maintaining his system and the results are actually telling you that you have a security problem in your IT management.
Ok well thought id ask just in case you know
-
@wirestyle22 said in Wiki Idea Shot Down:
I didn't read every post here, but your boss is wrong. An internal wiki is a fantastic way to document and i have no idea what he's talking about. It sounds like you're in a similar position as I am where all logic is discarded for seemingly no real reason.
Yeah thanks, I thought it was a good idea too. I have one at home and like mine so maybe there is some disconnect somewhere that he thinks it does something else
-
@stacksofplates said in Wiki Idea Shot Down:
@scottalanmiller said in Wiki Idea Shot Down:
@jmoore said in Wiki Idea Shot Down:
@scottalanmiller Well that is interesting. So any idea what these vulnerability scans were he said he ran that kept giving up php as the culprit?
Given everything else described, it is pretty safe to assume he's either just making it up or is not properly maintaining his system and the results are actually telling you that you have a security problem in your IT management.
I'm guessing something like Nessus. We have a couple appliances with web interfaces that we can't update and they show up on scans. It's nothing you can change and means nothing about PHP. Anything is a vulnerability if you don't maintain it.
AnyONE is a vulnerability if they don't maintain their systems. The risk is the person.
-
@jmoore said in Wiki Idea Shot Down:
@wirestyle22 said in Wiki Idea Shot Down:
I didn't read every post here, but your boss is wrong. An internal wiki is a fantastic way to document and i have no idea what he's talking about. It sounds like you're in a similar position as I am where all logic is discarded for seemingly no real reason.
Yeah thanks, I thought it was a good idea too. I have one at home and like mine so maybe there is some disconnect somewhere that he thinks it does something else
Yeah, that kind of makes it worse if he doesn't know what a wiki is, right?
-
@scottalanmiller said in Wiki Idea Shot Down:
Yeah, that kind of makes it worse if he doesn't know what a wiki is, right?
Lol well I'm sure he knows, he is a smart guy. i just meant that he might not be aware of the capabilities with all of the extensions and things. Wikimedia is quite nice software.
