Abstract :
If a person or team is not coding friendly, and want to rapidly design and deploy a web based application with dynamic contents, a free and open source software (FOSS) based content based Content Management System(CMS) is choice of millions. The main advantage in using a CMS is that the contents to can be segregated from the design for the application. The content goes to database and design, in the form of template is stored in CSS. Availability of free design templates makes a CMS more attractive. There are many advantages of using a cms including rapid deployment, lower maintenance cost, flexible architecture, large community support and above and free and open source, which can be customized as per requirements. However these advantages comes at a price. And this price includes susceptibility to security issues. According to Javelin Strategy & Research, 11.1 million adults were victims of identity theft in 2009, for a total fraud amount of $54 billion. With security at the forefront of your mind, remember that an open source system is just that...open to everyone. The FOSS based CMS includes vulnerability to file inclusion, Cross site scripting, gain privileges, sql injections, misconfiguration, unsecured storage, invalidated redirects. The presentation discusses these security issues and ways to avoid them.
Keywords :
Internet; Web design; content management; public domain software; security of data; CSS; Drupal; FOSS-based CMS; FOSS-based content management system; SQL injections; Web based application; cross site scripting; file inclusion; fraud; free and open source software; free design templates; identity theft; invalidated redirects; security issues; unsecured storage;
Conference_Titel :
Reliability, Infocom Technologies and Optimization (ICRITO) (Trends and Future Directions), 2014 3rd International Conference on
