[Qgis-community-team] joomla-version
Thomas Becker
thomasgeo at gmx.de
Tue Jun 3 04:26:52 EDT 2008
Hi Otto and Stephan,
I am quite new to the community and have no background on the decisions
made to use Joomla as the CMS for the web page. Personally I started to
use Joomla 1.0 some what two years ago and everything went fine until
the page got hacked due to a lack of security in a gallery module.
As far as I know you will highly run into problems if you want to have a
flashy page. But thats something I doubt! Joomla 1.0 and 1.5 as well
coming with many possibilities to present the content in a nice way.
According to the security I was reading a lot in the community pages and
it always comes down to a well established htaccess file. Everything
related to third party modules is your risk.
Although I really like Joomla, have you ever been thinking about using
Typo3? I know it takes more resources at the surfer side but this is
secure. I don't know how they managed to do this but they have a check
system running and separate trusted and non-trusted extensions.
When I was talking with the Joomla community about a system like this,
they have becoming mad. It takes to much effort to establish a system
like this and who should check all the code...
On the other hand somehow it must work, when you see who is using Joomla:
* Belgian Locale Police
* United Nations Regional Information Centre
and so on.
Question is also multi language support of the web page. Are you
intended to do so?
I have been talking with the Joomla guys on the Linux Tag in Berlin some
days ago and they have been pointing me on a new component called Nooku
which is highly integrated into the Joomla 1.5 framework. Nevertheless
multilanguage support is also part of Typo3
However, if the decision is made for Joomla I would like to offer you
some of my time to support you. I am not so familiar in building
templates or adjust them either in Joomla or Typo, but I am working
already quite some time as an author on both systems.
Cheers, Thomas
Otto Dassau schrieb:
> Hi (Stephan),
>
> I just found that we (probably) get in trouble using joomla 1.5, because the
> "new" server only provides PHP 5.0.4 and this causes various problems as far as
> I found on several web pages.
>
> e.g.: The joomla 1.5 installation guide says: "Do not use PHP 4.3.9, PHP 4.4.2
> or PHP 5.0.4" -> http://help.joomla.org/content/view/1938/310/
>
> For joomla 1.0 everything seems to be fine. As far as I found out the server is
> a fedora core 4, php 5.0.4, mysql 4.1.20. This is like joomla 1.0 not new but
> stable, so it might fit very well? ;-).
>
> So if you don't mind too much, I would propose to use latest 1.0 version for the
> web pages, because this would be secure, cause less work and probably trouble,
> especially because there are other projects (GRASS,GDAL,...) using the
> ressources, too.
>
> If you agree (especially Stephan), I would be happy and can start to prepair
> everything :). Otherwise I can of course contact the SAC and try to find another
> solution. But they already told me, that thei support for our server is pretty
> limited and small from their side.
>
> kind regards,
> Otto
>
> On Mon, 02 Jun 2008 23:57:08 +0200
> Stephan Reber <stephan.reber at sr-gis.de> wrote:
>
>> Hi,
>>
>> I have searched for information about the two joomla versions. The main
>> security problems of joomla in general are extensions and wrong
>> settings. This is indepedant from the used version. Here is a overview
>> of the points about security and the support I found.
>>
>> Joomla1.0:
>>
>> * long time experience with security problems
>> * stable
>> * many extensions with experience about their security
>> * only security patches for a certain time (depends on how long 1.0
>> is widely used, there isn't a deadline yet)
>> * there is no update to newer versions of PHP and MySQL in the future
>>
>> Jooma1.5
>>
>> * new security architecture (short time experience)
>> * stable
>> * fewer extensions (unsecure?)
>> * support for a longer time
>> * PHP5 works good, PHP4 may cause some problems (performance, stability)
>> * there will be support of newer versions of PHP and MySQL
>> * with the update to 1.6 (in the last quarter of 2008) there will be
>> a access control list and only support of PHP5.2+.
>>
>> I hope, this will help us with the decision. I tried to be neutral,
>> though I argumented for the newer version in my last emails. But it is
>> not so important for me which version we use, as long as the website
>> works fine.
>>
>> Regards
>> Stephan
>>
>>
>> _______________________________________________
>> Qgis-community-team mailing list
>> Qgis-community-team at lists.osgeo.org
>> http://lists.osgeo.org/mailman/listinfo/qgis-community-team
> _______________________________________________
> Qgis-community-team mailing list
> Qgis-community-team at lists.osgeo.org
> http://lists.osgeo.org/mailman/listinfo/qgis-community-team
>
--
Only wimps study only the general case; real scientists pursue examples.
Beresford Parlett
% =============================================
Thomas Becker
Working Group: Ecosystem Dynamic
Institute for Botany and Landscape Ecology
University Greifswald Grimmer Strasse 88 D - 17487 Greifswald, Germany
Tel: +49 (0)3834-864141
Fax: +49 (0)3834-864096
http://biogeo.botanik.uni-greifswald.de
http://tbecker.eu
More information about the Qgis-community-team
mailing list