Quote:
Originally Posted by plsureking
By the way, we have a 17+ point security system that covers everything - from frontend logins to backend hacking. We scan the traffic logs and file system of our servers every minute looking for exploits and abuse. My competitor's script has no built in security - frontend or backend. I'm not sure why he opened that can of worms. His software security is reliant on 3rd party scripts and the client's hosting company. I can only assume he is knocking the WP based cms, as WP is full of holes.
|
You probably haven't had decent pentesters or security researchers have a go at your script. Boasting about security is a foolish path to take for any vendor in your market space.
As for Wordpress, it's not full of holes. Don't confuse the platform with plugins or themes that introduce security risks.
Quote:
Originally Posted by AJHall
Our customers often prefer something exclusive for security that has a dedicated company behind it. We currently refer to ProxyPass exclusively for this, following the lead of large site networks and high volume hosts like MojoHost who prefer them for security due to their long track record of protection with large scale sites that are a target for constant hacking attempts.
|
CMS platforms are only as good as the weakest component, if a bad guy can inject SQL or run XSS attacks then all the external 3rd party security in the world might be for naught.
I'm pretty amazed to read both of your statements on security, for vendors of such high profile systems - neither of you seems to have a clue.