GetSimple Support Forum GetSimple General Questions and Problems v
Get simple BASIC

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Thread Modes
Get simple BASIC
wolfheart Offline
Junior Member
**
Posts: 1
Threads: 1
Joined: Feb 2015
#1
2015-03-05, 17:23:06
Ho Im building an app... Its a flat file app. I need a login/user management part of it. I was thinking about using GetSimple as that part. is there a very basic part of Getsimple that can be used for this. Without anything else just the login/user management part. I would hate to have to write it myself and found this to be the best script for it.

Me piecing apart your cms is probably not the greatest thing to do... since I didnt write it. so do you have just the user managent part... thanks
Find
Reply
shawn_a Offline
Lead Developer
*******
Posts: 6,266
Threads: 181
Joined: Sep 2011
#2
2015-03-05, 22:20:36
3.3.x is not very good to use modular, a lot of hard coded procedural pieces and old pho 5.2 code.

I would not suggest it, it also has several security weaknesses.

I would ise something like phpass library instead.
NEW: SA Admin Toolbar Plugin | View All My Plugins
- Shawn A aka Tablatronix
Website Find
Reply
revotron Offline
Junior Member
**
Posts: 28
Threads: 2
Joined: Feb 2015
#3
2015-03-18, 20:07:15
So the creator of getsimple says that it isn't secure...
Well what shall I say to this?
Find
Reply
shawn_a Offline
Lead Developer
*******
Posts: 6,266
Threads: 181
Joined: Sep 2011
#4
2015-03-18, 23:18:19
how about "why did you ban me?"
you could say that....
NEW: SA Admin Toolbar Plugin | View All My Plugins
- Shawn A aka Tablatronix
Website Find
Reply
revotron Offline
Junior Member
**
Posts: 28
Threads: 2
Joined: Feb 2015
#5
2015-03-18, 23:25:05
Hah? I didn't mean to insult you? I'm just wondering why you mentioned that your CMS isn't secure. Or am i mistaken? Sad
Find
Reply
shawn_a Offline
Lead Developer
*******
Posts: 6,266
Threads: 181
Joined: Sep 2011
#6
2015-03-18, 23:35:39
1. I am not the creator
2. Trying to reuse our security mechanism has security weaknesses compared to tried and tested security libraries.

I never said "it isn't secure"

If you want more info on these weaknesses, some have been addressed in 3.3.5, some will be addressed in 3.4.
We use non https, no session based cookie auth, that in itself should be considered a security weakness.

https://github.com/GetSimpleCMS/GetSimpl...3ASECURITY

specifically https://github.com/GetSimpleCMS/GetSimpleCMS/issues/880
NEW: SA Admin Toolbar Plugin | View All My Plugins
- Shawn A aka Tablatronix
Website Find
Reply
revotron Offline
Junior Member
**
Posts: 28
Threads: 2
Joined: Feb 2015
#7
2015-03-19, 04:14:15
(2015-03-18, 23:35:39)shawn_a Wrote: 1. I am not the creator
2. Trying to reuse our security mechanism has security weaknesses compared to tried and tested security libraries.

I never said "it isn't secure"

If you want more info on these weaknesses, some have been addressed in 3.3.5, some will be addressed in 3.4.
We use non https, no session based cookie auth, that in itself should be considered a security weakness.

https://github.com/GetSimpleCMS/GetSimpl...3ASECURITY

specifically https://github.com/GetSimpleCMS/GetSimpleCMS/issues/880

Alright, thank you very much! Always thought you are the only developer of the getsimple core. Sorry :/
Find
Reply
shawn_a Offline
Lead Developer
*******
Posts: 6,266
Threads: 181
Joined: Sep 2011
#8
2015-03-19, 04:29:00
I am atm
NEW: SA Admin Toolbar Plugin | View All My Plugins
- Shawn A aka Tablatronix
Website Find
Reply




Users browsing this thread: 1 Guest(s)