forum integration?

[achioo]

I saw that there is CMS integration with this new hosting panel... Has anyone thought about integrating forums such as phpBB?

[Shin]

I'm still developing an autoinstaller for cms like Cpanel's Fantastico Deluxe, now the script can only uplaod cms on a determinate dir in your homedir, but soon will be the install part with sql backend

[MicCo]

achioo Wrote:I saw that there is CMS integration with this new hosting panel... Has anyone thought about integrating forums such as phpBB?

It's not CMS integration, but an kind of Application vault, where it's possible to ad different applications for the users to install directly as in Plesk and Cpanel.
For my part, as an webhosting manager, I will not, with my exsperiens with phpBB, recomend that buletin board, due to the many security hols in the past, and still new once being discovered each months, search the web about it.
Often customers think that if You have it listet at an Application vault, then YUO have approved it for use at your servers, and that the codes ain't bad in anyway. So some kind of short informations field when customers want to install such an application, for the webhost to write some kind of information about that the customers shall keep the application updated to secure it for bad codes, will be an must for the Phantastico at our panel.

[achioo]

Well I've been using phpBB for 3+ years now and haven't really had any security problems with it because I patch it as soon as they release an update. Also with phpBB3 it allows for more dynamic updates plus phpBB3 is under going more stringent beta testing. I think the idea of the application vault is a pretty good one but how will it handle updates of the software which it houses?

[ephigenie]

this can only be handled in a central installation. You as a admin have to keep an eye on the security issues which come with the software you offer for install.
Then you'll update your central install and perhaps we can implement a way to inform all those people who've installed a particular software, that a update is ready to go. But a lot of Customers like to fiddle around in the code themself - so simple updates simple don't go. But they're responsible for track down errors.... not you. So if they like to keep the old - insecure versions they may. Hopefully you're hosting with fastcgi & suexec...

[MicCo]

I can only backup ephigenie 100%, and add the following, When You want to be a part of the hosting jungle, and supplie your customers with all this kind of fanzy stuff, you also have to be more aware about what is going on in the development marked of all this open source applications, so sign up for an bundle of news letters and go thrugh them every day.

I can also recomend you to read this artikle, as You may learn a lot of the risk of PHP and other scripts.

Quote:because I patch it as soon as they release an update

Nice answer, BUT what do You do in the mean time, untill someone descuver that's there is an securaty risk, I hope you have mode_secure, fastCGI, suexe etc, on your side.