Joomla, WordPress and Drupal, which one has better security in terms of framework, coding structure for prevent easy being hacked?
Related posts:
|
||||||
|
by  |
Joomla, Wordpress and Drupal, which one has better security for prevent easy being hacked?9 comments to Joomla, WordPress and Drupal, which one has better security for prevent easy being hacked?Leave a ReplyYou must be logged in to post a comment. Motherboard Repair Guide * How To Repair Laptops * Hard Drive Repair Tips * SEO Tools * Money Online Tips * Wordpress Security Guide * Wordpress SEO Tools * Forum |
|||||
|
About Us - Disclaimer - Sitemap - Privacy Policy - Contact Us Powered by Yahoo! Answers |
||||||
Joomla
I’ve personally worked with drupal and joomla, but not much at all with wordpress. In my personal opinion, drupal is by far more flexible than is joomla; however, joomla has many built-in features that makes it much easier for people to use.
Power/Flexibility v. Content Management Useability
If you are an experienced developer and will be leading the charge on content updates and the like in addition to programming very specific social networking modules, go with drupal.
What’s interesting is your question and many of the comments, completely ignore the real questions.
They are ALL vulnerable to attack *if*
1) you use vulnerable/down rev’ed extensions, plugins, modules, etc
2) your server CANNOT be ignored in that statement — many times it is
3) If you practice UNSAFE computing at your desktop, it doesn’t matter what your framework is
At SalvusAlerting.com we have a global view of all the vulnerabilities out there and I don’t think one is better than the other in terms of secure.
Some have more vulnerabilities, but culturally that may be the norm. For instance Drupal tends to be ‘more secure’ in the 3rd party areas b/c the Drupal community vets everyone’s extensions out — helping to find bugs. That does not mean Drupal is MORE SECURE, it means that the community does a better job at stopping the bugs.
The real key is to have a secure server, stay up on patching and review your LOGS often!
Tom Canavan
Co –founder : SalvusAlerting.com
Author — Joomla! WebSecurity
The National Vulnerability Database http://web.nvd.nist.gov/view/vuln/search?execution=e1s1 tells the story with respect to the number of reported issues/incidents/vulnerabilities:
WordPress: 186 records total (last 3 months: 6).
Drupal: 278 records total (last 3 months: 47).
Joomla: 404 records total (last 3 months: 39).
You may also want to look at these systems:
SugarCRM: 13 records total (last 3 months: 1).
Plone: 11 records total (last 3 months: 0).
(see security overview at http://plone.org/products/plone/security/overview/security-overview-of-plone )
And a couple of documents worth looking at:
A free 60-page report called “Idealware: Contemplating Open Source CMS Security and Market Share” available at: http://www.idealware.org/comparing_os_cms/idealware_comparing_os_cms_report.pdf (PDF, about 4 MB). The chart on p. 14 is worth checking out.
A free 90-page Open Source CMS market share report by Water & Stone at: http://www.cmswire.com/downloads/cms-market-share/ (zipped PDF, about 3.4MB, requires registration with disclosure of many details).
Joomla is the best out of all. Joomla! came into being as the result of the fork of Mambo by the development team on August 17, 2005. At that time, the Mambo name was trademarked by Miro International Pvt Ltd
Joomla is by far the worst — read any CMS review or forum site and most of the complaints are about Joomla sites getting targeted. I don’t know why on earth people here are saying that Joomla’s the best. It never was. I was a Joomla user for many years, and then I grew up and moved to WordPress.
I haven’t heard much about Drupal sites getting hit. WordPress is also known for getting targeted — even the new 2.8.6 version has just been targeted by hackers (see here: http://wordpress.org/support/topic/327762).
Ultimately, it all comes down to how good of a website administrator you are. If you are updating your site, plugins and themes like you should be, as well as your server, then you have little to worry about. On top of that, you need to read up on your CMS every day to see what’s going on. If there’s an exploit, you’ll want to know about it right away and be there when the patch is released.
As an experienced webmaster I recommend Joomla.
Just refer to:
http://www.threehosts.com/joomla
Hope this helped.
As a web developer, I find Drupal as most secure. I have published sites developed with Drupal and I regularly check the site activities with inbuilt records of site access. I found lots of bot attacks. All of them are neutralized by some of the great ad-on modules as well Drupal’s in built security. If one set some content private, no one ever, without know the password to access that content can find on the site. Also, the access permission of Drupal is very robust and secure.
Regards.
In my experience, having used both Joomla and WordPress extensively, WordPress is more secure but only if you set it up correctly.
There are two important things you must do, if you want to run a tight and secure WordPress site.
1. You must always keep your WordPress installation up to date, so you get any security patches the developers release.
2. You must install some security plugins, which will automatically plug some security holes that come by default. The three I use are:
Secure WordPress: http://downloads.wordpress.org/plugin/secure-wordpress.zip
Login Lockdown: http://downloads.wordpress.org/plugin/login-lockdown.1.5.zip
AskApache Password Protect: http://downloads.wordpress.org/plugin/askapache-password-protect.4.6.5.2.zip
If you follow these tips, I think you’ll find WordPress to be the most secure platform choice.