As it currently stands, this question is not a good fit for our Q&A format. We expect answers to be supported by facts, references, or expertise, but this question will likely solicit debate, arguments, polling, or extended discussion. If you feel that this question can be improved and possibly reopened, visit the help center for guidance.
Closed 10 years ago.
Does anyone ever found/used an ASP.NET application similar to Joomla?
I need to set up a quick and dirty CMS on a Windows Server and our client doesn't want us to use something else than ASP.NET.
I've been told by a friend that Umbraco is everything you would ever want in a CMS (and it was in the list that Nathan included in his answer). This recommendation is coming from a guy who's built several CMS solutions over the years and after taking a brief look at it, I think I'm going to try to push my clients towards using it over their current solutions.
DotNetNuke is quick to set up and get running. It is the best ASP.NET CMS that I have used.
It comes with many modules, and can be extended with numerous commercial and free 3rd party modules.
It is very easy to change to look of a DNN site by simply changing the assigned skin, and many 3rd party skins are available as well.
Warbeats.com runs on DNN, and handles quite a bit of traffic.
Community Server is a very well built CMS for ASP.NET, a free version is available.
Graffiti is Telligent's CMS (makers of the previously mentioned Community Server) and my be more appropriate depending on your requirements.
There are also many CMS projects on Codeplex.
I tried Graffiti and DotNetNuke and thought both were troublesome, then I tried Umbraco based on a recommendation from a friend and I love it! So much that I recommended it to Kooshmoose... I should also note that dasBlog is not a CMS, it's just blog software (which I use on my personal site and love, but it's not a CMS...)
Did you Look at DotNetNuke (http://www.dotnetnuke.com/) Its seems to be a good Systems to Start off as a base , But I doubt I could call it a Full CMS ? (Upto the users to decide)
MojoPortal might be worth a look into. Other than that, the list linked to by Nathan is well-worth looking into
umbraco gets my vote as a good CMS that comes close to Joomla in maturity and out of the box functionality. I'm not that fond of DNN, but it's been at least a year since I ran it thru its paces.
See also Oxite. It's an ASP.NET MVC Blog engine that you can use it for CMS.
If the concern isn't really about the ASP.Net language but about keeping a Windows server, you can use Joomla on IIS.
You can also check the list of CMSs on Microsoft's Web Platform
Related
As it currently stands, this question is not a good fit for our Q&A format. We expect answers to be supported by facts, references, or expertise, but this question will likely solicit debate, arguments, polling, or extended discussion. If you feel that this question can be improved and possibly reopened, visit the help center for guidance.
Closed 11 years ago.
One of my friend who is RIA developer and do action scripting. He started a blog and worked on it, after some time he saw that his blog is hacked that was developed in WP and some text was written in it so he just went to FTP and deleted all files.
So all this seems that a WP sites probability for being hacked is more than site built in RoR or Django or CakePHP or kohana e.tc. Is it true? What was actually the reason of hacking? Is there really some security vulnerabilities in WP?
I am a PHP developer and also have developed many custom sites, and also have worked in WP and joomla e.t.c. but never heard any thing like that. If it is problem there then can SSL solve this problem? Confused that how that happened...
Please tell me if you have any idea so that I can understand it and get out of curiosity.
Wordpress is moderately secure, but I just had two of my WP blogs hacked last week and had to rebuild. In the process I learned some helpful hints. Some of these hints are general for all sites, some specific to WP.
Always upgrade to the most current stable version of WP. Older versions may have known exploits.
There are several things you can do manually to secure your WP site, but instead use one or more of the established security plugins. Right now I am using both PBS (Bullet Proof Security) and WPD (Website Defender). Follow the guidance from these plugins; take some time to learn them well.
Run Akismet (or similar) to minimize rogue spam posts.
Turn off remote posting (ATOM and XML-RPC) unless you require it for your business model.
Harden your admin PW (and don't call your admin account ADMIN).
Don't install lots of experimental plugins onto your site to try them out. Create a sandbox site for this. Keep the installed plugins on your live site to a minimum.
Hope this helps.
Wordpress is a relatively secure product. However as with anything nothing is 100% fool-proof. Unfortunately with widely-used products such as Wordpress once an exploit is found it is widely available on 0-day exploit sites and a lot of hackers will trawl the web to take advantage of this exploit.
However staff at Wordpress are very quick to patch these errors which is a plus. Also the installation of plugins coded by the non Wordpress team can be open to exploits and is the most common way a hacker finds his way in. If there is an issue an SSL certificate will not stop the site being hacked. Will just mean that an form data will be passed between locations with better encryption. I hope this helps.
As it currently stands, this question is not a good fit for our Q&A format. We expect answers to be supported by facts, references, or expertise, but this question will likely solicit debate, arguments, polling, or extended discussion. If you feel that this question can be improved and possibly reopened, visit the help center for guidance.
Closed 9 years ago.
How does Drupal's security compare to Plone's?
Note:
It will be great if the comparison includes V.7 for Drupal and V.4 for Plone.
Thanks
There's a good overview of how Plone handles the top 10 security issues in the web app world here:
http://plone.org/products/plone/security/overview
Organizations like the FBI, CIA and European Network and Information Security Agency (ENISA) all use Plone, if that is an indication.
Plone has the best track record in security of any major CMS, and we take it very seriously. We have an architecture that is built around sandboxing, proper ACLs and a powerful security model.
Drupal has a pretty horrible security record (see the CVE numbers quoted in another comment), as do the other two major PHP-based frameworks (Wordpress and Joomla). Plone is Python-based, but you probably know that already.
Plone makes it easier to write secure add-ons, since we have a proper security model that makes it pretty hard to write code that is inherently insecure. This is different from any other system out there, and is another core differentiator.
(And yes, this answer is biased, I'm one of the founders ;)
The security of the main framework is pretty solid in both cases; the problems are almost always found in the add-on modules, so you need to evaluate each module you plan to use individually.
When searching the "CVE" official common vulnerabilities database, you get the following figures:
Last 3 years: plone 8, drupal 282.
Last 3 months: plone 0, drupal 9
The basic architecture of plone is apparently much more secure. I don't know drupal, actually, but I do know plone. There are no sql injection bugs as there's an non-sql object database behind it. It is a long-running python program, basically, instead of PHP scripts, which makes it easier to have a good solid security mechanism that's harder to break or mis-handle.
(Note: I just did a simple keyword search at http://web.nvd.nist.gov/view/vuln/search . Not all the results I see for drupal can be attributed to drupal, there seem to be some os-level vulnerabilities that somehow show up in the search results).
It's difficult to compare Plone and Drupal on equal metrics. CVEs is not the end-all comparison, and it's arguable how valuable it even is, as an indication of the relative security of the software. Of those 282 Drupal CVEs, how many were for Drupal core? Not 282.
limi can argue that the architecture is more secure, and point to Plone's response to the OWASP Top Ten. Drupal can do the same. And the "who uses it" argument? Well, whitehouse.gov uses Drupal, as well as a large number of other governmental and "enterprise" organizations.
There are several orders of magnitude more developers using Drupal; the higher numbers of vulnerabilities found can just as easily be attributed to more people bothering to look for them. These stats could easily be security by obscurity.
As it currently stands, this question is not a good fit for our Q&A format. We expect answers to be supported by facts, references, or expertise, but this question will likely solicit debate, arguments, polling, or extended discussion. If you feel that this question can be improved and possibly reopened, visit the help center for guidance.
Closed 10 years ago.
Basically I need to choose one so that, I can get familiar with it quickly and then customize it to my needs.
I'm a .NET developer and know classic ASP too. But I think understanding PHP will not be a problem for me and also think that it won't be that difficult.
What will you like to recommend me?
UPDATE:-
Sorry that I'm adding this info late.
Right now I don't know what customization I will be doing. But I'm sure going forward I will have my own requirement and will need to customize. So I don't want to be in situation where I will have to say "This engine which I'm using will not allow me XYZ change or it will be too difficult for me to make XYZ change in this blogging software, so lets migrate to something else."
I will prefer a short learning curve.
Wordpress is nice, but if you're a .NET developer BlogEngine.NET is extremely easy to extend. The drawback is the much smaller community and resources, but if you're wanting to do some real customization and tweaking, BlogEngine will probably fit your tastes much better. There is a decent development community backing and supporting customization and plugins for BlogEngine, but you'll find that a lot of the information is outdated or maintenance has been forgotten.
If you're wanting something with tons of community widgets, plug-ins and tons of themes, Wordpress is your prime choice without a question. But that's if you're going with the canned solutions. There are a lot of them, and you can still customize them and tweak things, but that's dependent on how comfortable you feel about picking up a new paradigm. Wordpress customization isn't so much PHP development, as it is Wordpress development, since you'll be so deep in Wordpress' own world and API.
Both are available in MS's Web Platform Installer, check them out of your box and play around with them some. It's really going to come down to which one you feel just fits. I've used both for different projects, but I've fallen back on doing my own thing with BlogEngine more than Wordpress. But that's for my own personal stuff.
If you know .NET and C#, facing PHP and mySql is going to feel like you went back to 19th century and have to burn coal in your "car" instead of tanking your beamer at a local gas station :-)
One particularly interesting thing about BlogEngine.NET is that out of the box it will run without SQL Server - just with XML files as a storage. If you know your programming I don't have to tell you what kind of flexibility that provides. Not that I'd recommend actually running a web site for a long time without SQL Server but such dual backing opens some very interesting options.
Should I mention that it comes with Visual Studio sln and proj files? :-) That pretty much means zero learning curve.
Go with Wordpress. It's easily customisable, and there's masses and masses of information on customising it.
Digging into Wordpress
Wordpress docs
Thematic - a Wordpress theme designed to be easily customisable/extensible.
As it currently stands, this question is not a good fit for our Q&A format. We expect answers to be supported by facts, references, or expertise, but this question will likely solicit debate, arguments, polling, or extended discussion. If you feel that this question can be improved and possibly reopened, visit the help center for guidance.
Closed 10 years ago.
I'm working on deploying a CRM in a University, the software to deploy has to be open source.
My research lead me to SugarCRM Community Edition, however, this edition lack of reporting and seems to be really hard to tailor to specific needs.
thus, i'm considering to use vtiger.
What's your advice, regarding a mid-size project.
Do you recommand to use SugarCRM, Vtiger or another software?
If you are well versed in CSS and can tailor vTiger to look a little better, then it might be a viable solution for you.
However, I would personally highly recommend SugarCRM. It is much easier to maintain and has a much larger community. Plus, you can look into the Enhanced Search Plugin, The Kinamu Reporting tool and the Zucker reports plugin to help fulfill your needs for a reporting tool. However, they are both free. I would just download them both and check into the free plugins on sugarforge and then base my decision on your findings there.
Hope this helps!
I would also recommend sugarCRM because of the larger community and availability of third party plug ins, having worked with both i can say that sugarCRM's studio gives you a bit more flexibility. There are also many plug ins; I would recomend the ModernAqua theme to improve look and feel.
I'll give you a warning however, sugarCRM is not always nice to work with. Its code is poorly documented and maintainance is a big hastle. upgrading with custom code is still error prone through version 6.x despite what they say and changes will be overwritten by the module builder.
So in short, go with Sugar but think carefully before customizing it too much because it can be a pain to maintain.
Unlike others, I am recommending vtiger CRM. The community with vtiger isn't small and if you are a true OpenSource lover then you should definitely use vtiger as it comes with no commercial version etc.
There is a number of available modules in the exchange available at vTiger. Also, a number of mobile apps etc are available too.
CSS proficiency? I don't think that is required at all. We are using vtiger out of the box and the look and feel is as good as you need. There is MailChimp integration etc available too if you are into marketing automation.
Its better to use SugarCRM Professional Edition. In this already Report Module is in Built
Thanks
I recommend SugarCRM too. Vtiger has a much smaller community and for Sugar there are modules available for almost any scenario.
As it currently stands, this question is not a good fit for our Q&A format. We expect answers to be supported by facts, references, or expertise, but this question will likely solicit debate, arguments, polling, or extended discussion. If you feel that this question can be improved and possibly reopened, visit the help center for guidance.
Closed 10 years ago.
This is really a 2 part question. First of all, I just wanted to know how common is asp.net in the real world?
Secondly, I just want to know what are the read world scenario regarding scaling a asp.net site? http://highscalability.com/ almost never talked about the asp.net stack. Does anyone have any reason article that talks about how to scale an asp.net app?
Thanks.
I don't have numbers but based on the number of .net questions on so I'd say it's pretty common For your second question seehttp://highscalability.com/plentyoffish-architecture
MySpace uses ASP.NET (source). A lot of big sites do. I would ignore the Plenty of Fish example though. From my recollection of stories I've read about it, they're just using HttpHandlers for output, skipping the Webforms stuff altogether. You could probably get Webforms to scale though if you absolutely had to. Most popular frameworks can handle high load, it just depends on the code and who's writing it. Anyone can program a site in any framework that won't scale but not vice versa.
As for how to scale, the biggest thing is caching, caching, caching. All big sites cache extensively. Facebook has thousands of servers just for caching. That's just a start though.
Yes asp.net is used in the real world. I have been following how Stackoverflow has been created since I first heard about it over a year ago and have taken away a lot of lessons. Following how stackoverflow will scale in future as their demand grows is pretty interesting and they are making a lot of their information public. Plus the podcasts are hilarious :)
Its hard to say how widespread ASP.NET is in the world but I think it is very widespread compared to PHP, Java and other server technologies. And I'm convinced that ASP.NET is as scalable as anything else you'll try.
If you wan't a starting point to read about ASP.NET performance you could take a look at chapter 6 of the P&P book "Improving .NET Application Performance and Scalability". It's from 2004 so it might be a little outdated.
To give a couple of examples of high traffic sites running ASP.NET you just have to look at http://www.microsoft.com/ or https://stackoverflow.com/. if your site is smaller than these (and it probably is) scalability wont be you biggest concern. You should probably be more concerned about writing maintainable code.
Plenty of Fish with about 1,2 billion pageviews/month
Over 9000.
Realistically I've run into many high traffic websites StackOverflow as an example that use ASP.NET
One thing that is useful for high scalability is the ability to add more servers if needed and still be able to maintain your current session using various ASP.NET session state technologies.