Home / server / Questions

Questions[content-management](server)

Martin Hope
Registered User
Asked: 2011-02-04 11:55:22 +0800 CST
  • 2

I am trying to get a few Content Management Systems up and running. But I have security concerns with respect to them

1) please see following link http://www.dokeos.com/doc/installation_guide.html section 2 says The following directories need to be readable, writeable and executable for everyone:

  • dokeos/main/inc/conf/
  • dokeos/main/upload/users/
  • dokeos/main/default_course_document/
  • dokeos/archive/
  • dokeos/courses/
  • dokeos/home/

I am not very happy with this idea of having directories to be readable,writeable and executable for every one.

2) http://doc.claroline.net/en/index.php/Install_general_information

the section Rights on folders says

" If you don't want to set write access on the whole folders, which is recommended for security reasons, give to the web server user write access on these folders : "

Is this a recommended practice.?

3) Also another LMS (Learning Management System) while installing asked to give some folders writeable and executable for every one here is a link http://atutor.ca/atutor/docs/installation.php While installing it I got a message

“The directory you specify must be created if it does not already exist

and be writeable by the webserver. On Unix machines issue the command chmod a+rwx content, additionally the path may not contain any symbolic links. chmod a+rwx /var/www/atutor/content”

4) Another LMS docebolms asked to give write permissions on

files/doceboCore/photo
files/common/users
files/doceboLms/course
files/doceboLms/forum
files/doceboLms/item
files/doceboLms/message
files/doceboLms/project
files/doceboLms/scorm
files/doceboLms/test

I checked its documentation http://www.docebo.org/doceboCms/index.php?mn=docs&op=docsπ=5_4&folder=7 but was not that helpful.

I am not at all convinced by the idea of giving permissions to read,write and execute as these Learning Management Systems say. Let me know what you people have to say? What is the best practise in such situations?

ubuntu security web-server content-management
Martin Hope
drodecker
Asked: 2010-03-03 17:21:29 +0800 CST
  • 3

Our websites are being crawled by content thieves on a regular basis. We obviously want to let through the nice bots and legitimate user activity, but block questionable activity.

We have tried IP blocking at our firewall, but this becomes to manage the block lists. Also, we have used IIS-handlers, however that complicates our web applications.

Is anyone familiar with network appliances, firewalls or application services (say for IIS) that can reduce or eliminate the content scrapers?

firewall security iis web-crawler content-management
Martin Hope
ngm
Asked: 2010-02-13 06:20:55 +0800 CST
  • 2

I'm investigating the use of SharePoint for relatively simple content management functionality service for use within university systems.

I'm totally new to SharePoint (and originally from a Linux background), so am not very up-to-speed with the various versions and licenses.

What I'm wondering is, does the basic Windows SharePoint Services provide content management functionality, or is that something that only comes with Microsoft Office SharePoint Server?

The content management required is quite basic I feel -- a web-based interface to allow for the creation of public-facing web-based HTML content. The content will be mostly textual information, with images and links to documents contained within. Customisation of the public-facing side is important. And, ideally, the actual content-editing on the administrative side should be fairly easy for non-technical users. The features required are along the lines of:

  • Image upload, and subsequent inclusion in textual content
  • Document upload, and subsequent inclusion in textual content
  • Link creation (both to internal and external content)
  • WYSIWYG content creation
  • Suitability for non-technical users
  • Role-dependent content visibility
  • Preview content before publishing
  • Highly customisable layout and look’n’feel (for public facing sections)
  • Customisable links in menus

From perusing the Wikipedia pages for both products, I get the impression WSS does provide content management, but perhaps MOSS provides more advanced CMS on top.

sharepoint cms content-management
Martin Hope
Jeff Yates
Asked: 2009-07-28 08:58:08 +0800 CST
  • 2

We are looking to update our intranet with a content management system that provides wiki and forum support, as well as (hopefully) support for auto-generating content from files controlled under SVN such as Word documents. The aim is that we don't need to update the intranet each time a working practise changes and that we don't need to change the format of all our existing procedures to something more web-friendly.

I have already asked a question more specific to a particular CMS with no answers so far, but what I'd like to know is whether there is ANY CMS out there that can achieve what we'd like, free or otherwise?

svn intranet content-management
Martin Hope
Rob Allen
Asked: 2009-06-06 09:16:12 +0800 CST
  • 2

When making content management tools available to web users, which type of CMS is easier to secure, train your users on and generally keep running and happy:

  • Online, databased CMS (i.e. Drupal, DotNetNuke, etc.)
  • client tool with server component (i.e. Adobe Contribute)

Are there any CMS systems in particular that you would expressly not allow to run on hardware you maintain?

content-management