Author Topic: Security - CiviCRM if you might get hacked? (Read 934 times)

Starwhale · June 02, 2010, 06:06:26 am

I'm just making plans for a new website for a brand new charity. I'm tending towards a build in Drupal or Joomla backed up by CiviCRM.

One thing I know my clients will worry about is the security of keeping registrants details on a web hosted site. I went to a presentation on CiviCRM last night where the answer seemed to be that security doesn't depend on the CiviCRM system itself, but rather what security walls you build around it. But I wanted to fish about a bit further.

I'd be especially glad if people can point me to charities that are subject to hack attacks and have chosen to use CiviCRM. And secondly, what questions should I be asking my developer to make sure the system is very secure?

Cheers,

xavier · June 02, 2010, 06:29:40 am

Any website is subject to loads of attack daily. This being said, we have human rights NGOs (eg amnesty) that are likely to be more specifically targeted, and the usual big visible like Mozilla or Wikipedia for instance that use CiviCRM.

Oh, one last thing, the weakest link is likely to be the users, and if I want to go into your website, I'll try guessing the password of the less IT navvy people on your team, and try as the password his first name, last name, "password", the name of this wife or kids ... and that's likely I'll be in quickly.

X+

CiviCRM Community Forums (archive)

News:

Author Topic: Security - CiviCRM if you might get hacked? (Read 934 times)

Starwhale

Security - CiviCRM if you might get hacked?

xavier

Re: Security - CiviCRM if you might get hacked?