Wiki Idea Shot Down

scottalanmiller

@jmoore said in Wiki Idea Shot Down:

@stacksofplates said in Wiki Idea Shot Down:

I've always used Drupal. IMO probably the most secure and flexible CMF there is and built with PHP. Just sounds like someone making excuses.

Yeah tons of things are built with php. I've never tried Drupal but I suppose I will have to experiment sometime.

ALmost everything is. Even Facebook and Wikipedia.

stacksofplates

@jmoore said in Wiki Idea Shot Down:

@stacksofplates said in Wiki Idea Shot Down:

I've always used Drupal. IMO probably the most secure and flexible CMF there is and built with PHP. Just sounds like someone making excuses.

Yeah tons of things are built with php. I've never tried Drupal but I suppose I will have to experiment sometime.

The learning curve is fairly steep but once you're over the hump you'll never want to use something else. It's kind of weird it's a really steep learning curve but it's super easy (like minutes) once you understand how to use it.

jmoore

Well it is a programming language in its own way so not really surprising that it takes a while to learn. I only know basics and enough to be dangerous

scottalanmiller

@jmoore said in Wiki Idea Shot Down:

Well it is a programming language in its own way so not really surprising that it takes a while to learn. I only know basics and enough to be dangerous

He means Drupal, not PHP

jmoore

Oops! My fault, your right

scottalanmiller

PHP ranked one of the more secure languages for web development: https://gcn.com/articles/2014/04/24/programming-language-security.aspx?s=gcntech_250414

jmoore

@scottalanmiller Well that is interesting. So any idea what these vulnerability scans were he said he ran that kept giving up php as the culprit?

coliver

@jmoore said in Wiki Idea Shot Down:

@scottalanmiller Well that is interesting. So any idea what these vulnerability scans were he said he ran that kept giving up php as the culprit?

Probably old versions of PHP that needed to be updated 10 years ago. Another example of "keep your shit up to date."

wirestyle22

I didn't read every post here, but your boss is wrong. An internal wiki is a fantastic way to document and i have no idea what he's talking about. It sounds like you're in a similar position as I am where all logic is discarded for seemingly no real reason.

scottalanmiller

@jmoore said in Wiki Idea Shot Down:

@scottalanmiller Well that is interesting. So any idea what these vulnerability scans were he said he ran that kept giving up php as the culprit?

Given everything else described, it is pretty safe to assume he's either just making it up or is not properly maintaining his system and the results are actually telling you that you have a security problem in your IT management.

stacksofplates

@scottalanmiller said in Wiki Idea Shot Down:

@jmoore said in Wiki Idea Shot Down:

@scottalanmiller Well that is interesting. So any idea what these vulnerability scans were he said he ran that kept giving up php as the culprit?

Given everything else described, it is pretty safe to assume he's either just making it up or is not properly maintaining his system and the results are actually telling you that you have a security problem in your IT management.

I'm guessing something like Nessus. We have a couple appliances with web interfaces that we can't update and they show up on scans. It's nothing you can change and means nothing about PHP. Anything is a vulnerability if you don't maintain it.

jmoore

@stacksofplates said in Wiki Idea Shot Down:

I'm guessing something like Nessus. We have a couple appliances with web interfaces that we can't update and they show up on scans. It's nothing you can change and means nothing about PHP. Anything is a vulnerability if you don't maintain it.

Purely Windows here too btw

jmoore

@scottalanmiller said in Wiki Idea Shot Down:

Given everything else described, it is pretty safe to assume he's either just making it up or is not properly maintaining his system and the results are actually telling you that you have a security problem in your IT management.

Ok well thought id ask just in case you know

jmoore

@wirestyle22 said in Wiki Idea Shot Down:

I didn't read every post here, but your boss is wrong. An internal wiki is a fantastic way to document and i have no idea what he's talking about. It sounds like you're in a similar position as I am where all logic is discarded for seemingly no real reason.

Yeah thanks, I thought it was a good idea too. I have one at home and like mine so maybe there is some disconnect somewhere that he thinks it does something else

scottalanmiller

@stacksofplates said in Wiki Idea Shot Down:

@scottalanmiller said in Wiki Idea Shot Down:

@jmoore said in Wiki Idea Shot Down:

@scottalanmiller Well that is interesting. So any idea what these vulnerability scans were he said he ran that kept giving up php as the culprit?

Given everything else described, it is pretty safe to assume he's either just making it up or is not properly maintaining his system and the results are actually telling you that you have a security problem in your IT management.

I'm guessing something like Nessus. We have a couple appliances with web interfaces that we can't update and they show up on scans. It's nothing you can change and means nothing about PHP. Anything is a vulnerability if you don't maintain it.

AnyONE is a vulnerability if they don't maintain their systems. The risk is the person.

scottalanmiller

@jmoore said in Wiki Idea Shot Down:

@wirestyle22 said in Wiki Idea Shot Down:

I didn't read every post here, but your boss is wrong. An internal wiki is a fantastic way to document and i have no idea what he's talking about. It sounds like you're in a similar position as I am where all logic is discarded for seemingly no real reason.

Yeah thanks, I thought it was a good idea too. I have one at home and like mine so maybe there is some disconnect somewhere that he thinks it does something else

Yeah, that kind of makes it worse if he doesn't know what a wiki is, right?

jmoore

@scottalanmiller said in Wiki Idea Shot Down:

Yeah, that kind of makes it worse if he doesn't know what a wiki is, right?

Lol well I'm sure he knows, he is a smart guy. i just meant that he might not be aware of the capabilities with all of the extensions and things. Wikimedia is quite nice software.

jmoore

@scottalanmiller said in Wiki Idea Shot Down:

AnyONE is a vulnerability if they don't maintain their systems. The risk is the person.

You remember my post about doing Windows updates right? Where I asked departments to put in work orders so I could keep their systems up to day on a regular schedule and have documentation in the ticket system that it was done. This is the same person that said no to that. I have learned from dealing with Wordpress and everything else on my websites how important to stay as updated as possible. I carry this thinking with me to my work too

scottalanmiller

@jmoore said in Wiki Idea Shot Down:

@scottalanmiller said in Wiki Idea Shot Down:

Yeah, that kind of makes it worse if he doesn't know what a wiki is, right?

Lol well I'm sure he knows, he is a smart guy. i just meant that he might not be aware of the capabilities with all of the extensions and things. Wikimedia is quite nice software.

He's a smart guy and yet makes the wild claims he's been making? While everyone is an "idiot about something", these are pretty basic and weird thinks he things he can get away with saying. It's not a good indicator.

wirestyle22

@scottalanmiller said in Wiki Idea Shot Down:

While everyone is an "idiot about something"

That's comforting