[Qgis-community-team] joomla-version

Thomas Becker thomasgeo at gmx.de
Tue Jun 3 04:26:52 EDT 2008 

Hi Otto and Stephan,

I am quite new to the community and have no background on the decisions 
made to use Joomla as the CMS for the web page. Personally I started to 
use Joomla 1.0 some what two years ago and everything went fine until 
the page got hacked due to a lack of security in a gallery module.

As far as I know you will highly run into problems if you want to have a 
flashy page. But thats something I doubt! Joomla 1.0 and 1.5 as well 
coming with many possibilities to present the content in a nice way.

According to the security I was reading a lot in the community pages and 
it always comes down to a well established htaccess file. Everything 
related to third party modules is your risk.

Although I really like Joomla, have you ever been thinking about using 
Typo3? I know it takes more resources at the surfer side but this is 
secure. I don't know how they managed to do this but they have a check 
system running and separate trusted and non-trusted extensions.

When I was talking with the Joomla community about a system like this, 
they have becoming mad. It takes to much effort to establish a system 
like this and who should check all the code...

On the other hand somehow it must work, when you see who is using Joomla:

* Belgian Locale Police
* United Nations Regional Information Centre

and so on.

Question is also multi language support of the web page. Are you 
intended to do so?

I have been talking with the Joomla guys on the Linux Tag in Berlin some 
days ago and they have been pointing me on a new component called Nooku 
which is highly integrated into the Joomla 1.5 framework. Nevertheless 
multilanguage support is also part of Typo3

However, if the decision is made for Joomla I would like to offer you 
some of my time to support you. I am not so familiar in building 
templates or adjust them either in Joomla or Typo, but I am working 
already quite some time as an author on both systems.

Cheers, Thomas

Otto Dassau schrieb:
> Hi (Stephan), 
> 
> I just found that we (probably) get in trouble using joomla 1.5, because the
> "new" server only provides PHP 5.0.4 and this causes various problems as far as
> I found on several web pages. 
> 
> e.g.: The joomla 1.5 installation guide says: "Do not use PHP 4.3.9, PHP 4.4.2
> or PHP 5.0.4" -> http://help.joomla.org/content/view/1938/310/ 
> 
> For joomla 1.0 everything seems to be fine. As far as I found out the server is
> a fedora core 4, php 5.0.4, mysql 4.1.20. This is like joomla 1.0 not new but
> stable, so it might fit very well? ;-).
> 
> So if you don't mind too much, I would propose to use latest 1.0 version for the
> web pages, because this would be secure, cause less work and probably trouble,
> especially because there are other projects (GRASS,GDAL,...) using the
> ressources, too.
> 
> If you agree (especially Stephan), I would be happy and can start to prepair
> everything :). Otherwise I can of course contact the SAC and try to find another
> solution. But they already told me, that thei support for our server is pretty
> limited and small from their side.
> 
> kind regards,
>  Otto
> 
> On Mon, 02 Jun 2008 23:57:08 +0200
> Stephan Reber <stephan.reber at sr-gis.de> wrote:
> 
>> Hi,
>>
>> I have searched for information about the two joomla versions. The main
>> security problems of joomla in general are extensions and wrong
>> settings. This is indepedant from the used version. Here is a overview
>> of the points about security and the support I found.
>>
>> Joomla1.0:
>>
>>     * long time experience with security problems
>>     * stable
>>     * many extensions with experience about their security
>>     * only security patches for a certain time (depends on how long 1.0
>>       is widely used, there isn't a deadline yet)
>>     * there is no update to newer versions of PHP and MySQL in the future
>>
>> Jooma1.5
>>
>>     * new security architecture (short time experience)
>>     * stable
>>     * fewer extensions (unsecure?)
>>     * support for a longer time
>>     * PHP5 works good, PHP4 may cause some problems (performance, stability)
>>     * there will be support of newer versions of PHP and MySQL
>>     * with the update to 1.6 (in the last quarter of 2008) there will be
>>       a access control list and only support of PHP5.2+.
>>
>> I hope, this will help us with the decision. I tried to be neutral,
>> though I argumented for the newer version in my last emails. But it is
>> not so important for me which version we use, as long as the website
>> works fine.
>>
>> Regards
>> Stephan
>>
>>
>> _______________________________________________
>> Qgis-community-team mailing list
>> Qgis-community-team at lists.osgeo.org
>> http://lists.osgeo.org/mailman/listinfo/qgis-community-team
> _______________________________________________
> Qgis-community-team mailing list
> Qgis-community-team at lists.osgeo.org
> http://lists.osgeo.org/mailman/listinfo/qgis-community-team
> 

-- 

Only wimps study only the general case; real scientists pursue examples.

Beresford Parlett
% =============================================

Thomas Becker
Working Group: Ecosystem Dynamic
Institute for Botany and Landscape Ecology
University Greifswald Grimmer Strasse 88 D - 17487 Greifswald, Germany
Tel: +49 (0)3834-864141
Fax: +49 (0)3834-864096
http://biogeo.botanik.uni-greifswald.de
http://tbecker.eu

More information about the Qgis-community-team mailing list