|
Elevatedx Gets my vote. Its a very powerful system and very easy to use :thumbsup
|
sitedepth worked very well for me! :)
|
I am also on the ElevatedX bandwagon. They always take care of me if I need them. Their support is awesome!!
|
I have a question...I don't use CMS but the other sites in our cash program do. What are the security issues involved with a CMS built website? Backdoors? Exploits?
I'm particularly interested in AWIZ, MAS, and ElevatedX as far as security issues are concerned. |
Quote:
With software, security is not something that you either have or don't have in your product. Security is a process. It comes from analyzing all possible and present attack vectors and minimizing or eliminating those risks. Here are some of the ways that ElevatedX minimizes those risks. Members Area: ------------- Input Validation: All input to our system (things like ?id=1 and posted values) are always validated. If we're expecting id to be a number, strictly convert id into a number. SQL Escaping: If we're expecting a value that's not a number, ALWAYS make sure the data is escaped properly. For a semi-humorous idea of what happens when you don't escape your inputs, check out this comic: http://xkcd.com/327/ Included code: We don't include code from external URLs. Our CMS is self contained, and NEVER runs code based on outside user input. Containment: 99% of the functionality of our CMS is contained within functions or classes Admin Area: ----------- Authentication: Our admin area requires a username and password to get into the system. If there are too many failed attempts at logging in for a specific user, our login page prompts for a captcha in addition to a login / password. This is exactly the way gmail works for logging in. Permissions: Our admin area does strict checking to see if your user has permission to perform specific actions (delete sets, whatnot). While this is more of a feature than a security process, we always make sure that if you're going to do something like delete a set, you're logged in a user that allows you to do that. Exploits and Backdoors: ----------------------- Our software has no backdoors. We have absolutely no benefit putting them into our system. We're trying to gain new customers, not alienate them! We currently have not run into any exploits for our software since our CMS has been released, and we're proud of this record. However, in the event that an exploit is discovered, we will address the issue immediately and upgrade all of our customers. By choosing us, we feel you're making a safe bet. |
ElevatedX looks solid.
|
I would like to thank everyone for the good words about MAS. We have always been trying to stay on top of the growing needs of our customers and bringing them a powerful, solid and easy-to-work-with system, which could be adapted to work with many different types of site layouts.
vittle and Useless Warrior - I believe MAS can do everything that you were after. Feel free to have a look around http://www.mansionproductions.com/mas/ and contact us with any specific question or feature that you are interested in but do not find the answer. Gerco - MAS works with virtually any kind of [video] content. It is just a matter of a player to embed in the video page template. Like GrouchyAdmin correctly said, if you have troubles setting it all by yourselves, we can provide you with the basic code to display a different player based on the format (i.e. WMP for wmv and avi, QuickTime for mov and mpg, Real, FLV etc.). JW FLV seems to be one of the best and affordable players out there, and it does support H.264 if member has Adobe Flash 9.0.98 or later. We can help you set it up in your members areas if you like that, you just have to take care of the player's licensing fee (20 EUR). Or you can choose another one, not a problem. AJHall - that's was a very good and thoroughful explanation on the security features! Like you say, "Security is a process". I just wish to add that this process involves many parties - not just the software vendors, but also the hosting company and the webmaster (owner), and it should be taken seriously by all. Not a big use of a bullet-proof CMS if there are other weak scripts on the same server, or if passwords are not being stored and kept respectfully. In this regard, we always recommend our MAS customers to make use of the "Limit admin account by list of static IP addresses" feature, to be on the safe side. |
Quote:
|
Quote:
Ross mentioned something I should have added to my reply - The Elevated X system also has the option for IP restriction for admin users built in. :thumbsup |
Quote:
Thanks for the reply here Ross, as to the player... I want to find a solution that does not use flash... I don't want flash anywhere on the site. So, if a member wanted to say, surf my site with his Iphone, he could. With the new 3g Iphone expected out in about 60 days, this will even be a better time to start the conversion. You know that I'm totally inept when it comes to this web stuff... How my site has generated as much $$ is beyond me, hell, I need you in order to even change links or anything for that matter when it comes to MAS. Is there any solution to server the video to the members in H.264 format, like You Tube does? So when a member clicks the video, it just opens in quicktime, or whatever h.264 player they happen to have? |
|
Quote:
|
Quote:
|
Quote:
Under the FHGENIE, Instanst availability should be Instant availability. :) |
Those interested in automated video encoding, take a look at the thread link below.
We're running a promotion during the entire month of April - Any new user will receive a FREE video transcoding module and we also offer free database migration for anyone who wants to move to our platform from another commercial cms. Check it out: https://gfy.com/fucking-around-and-business-discussion/820423-time-free-elevatedx-offering-free-video-transcoding-plugins-details.html |
Quote:
they live in lalaland ! |
| All times are GMT -7. The time now is 01:30 AM. |
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123