Posted by Chris Shiflett on 02/09/05 03:55

--- Tony Di Croce <dicroce@gmail.com> wrote:
> Due to the recent vulnerabilities discovered in phpBB and the
> content of this page:
> http://www.phpbb.com/
> I have decided to consider other options for my forum needs... Does
> anyone have any reccomendations for a PHP based forum software?

FUDforum has proven to be much more secure over the years:

http://fudforum.org/forum/

My complaint with FUDforum is that it's fugly. :-) I find phpBB to be much
more attractive. Unfortunately, it has had numerous security
vulnerabilities over the years. I've never examined the code, so I'm not
sure if it's due to a poor design or just developer mistakes, but I
wouldn't feel comfortable deploying it.

While I agree with your decision, I disagree with using their recent
misfortune to support a switch. Server security is an entirely different
field - a secure application doesn't make a secure server, and a secure
server doesn't make a secure application.

Chris

=====
Chris Shiflett - http://shiflett.org/

PHP Security - O'Reilly HTTP Developer's Handbook - Sams
Coming Soon http://httphandbook.org/

• Next in thread: AW: [PHP] phpBB alternatives?
• Prev in thread: Re: [PHP] phpBB alternatives?
• Next in forum: RE: [PHP] ncurses woes...
• Prev in forum: Re: [PHP] phpBB alternatives?
• Thread view: [PHP] phpBB alternatives?

[Reply to this message]