Thread: Kudos CMS
View Single Post
  #15 (permalink)  
Old 01-27-2008, 11:07 AM
John's Avatar   
John John is offline
Co-Administrator
  
Join Date: Jul 2006
Age: 19
Posts: 2,791
Last Blog:
Passwords
Rep Power: 20
John has much to be proud ofJohn has much to be proud ofJohn has much to be proud ofJohn has much to be proud ofJohn has much to be proud ofJohn has much to be proud ofJohn has much to be proud ofJohn has much to be proud ofJohn has much to be proud of
Send a message via AIM to John
Default
Well I just installed it - Haven't played with the CMS much but I have two recommendations.

1. A more graphic installer, "noob" users don't particularly like having to edit PHP files to install a CMS.

2. A huge no-no is to allow the CMS to fully operate with the install.php file still active. If someone installs the CMS, gets everything working fine, has hundreds of users register - then someone comes along and sniffs the directory and sees install.php is still there - all they have to do is run install.php and the entire website is wiped out. A simple
PHP Code:
if(file_exists("install.php") die("Delete install.php"); 
would do the trick. I'll let you know more when I play with it some more.
__________________
CodeCall Blog | CodeCall Wiki | Shareware | Linux Forum | My Blog
Chat with other CodeCall members on IRC; connect to irc.codecall.net and join #codecall
Reply With Quote

Sponsored Links