די עם הקטנוניות!!! אני בכוונה עושה את זה עכשיו כ top-posting ובעברית.
לפי דבריך בעצם מרבית הבלוגים כבר צריכים להיות למטה. אבל משום מה לא מעט בלוגים עובדים עם וורדפרס ועובדים מצויין! מה גם שהביקורת כלפי אחת השפות הנפוצות בתכנות ווב (PHP) ממש לא נכונה. הרי גם דרופל וגם ג'ומלה למיטב ידיעתי כתובות בשפת PHP. לפי דבריך גם הן אם כך לא בטוחות. כן אתה צודק. כל מערכת מורכבת יש בה יותר סיכוי לבעיות אבטחה. אז מה? האם זה אומר שעדיף לא להשתמש במערכת מורכבת? לפי זה אולי נפסיק בכלל להשתמש בלינוקס ונחזור למשהו פשוט כמו DOS או CP/M? -- אורי עידן On Wed, Nov 4, 2009 at 12:41 PM, Shlomi Fish <shlo...@iglu.org.il> wrote: > Hi Ori! > > You didn't follow my netiqutte E-mail advice. And you didn't separate > paragraphs with empty lines. I'll reply anyway. > > On Wednesday 21 Oct 2009 06:36:13 Ori Idan wrote: > > On Tue, Oct 20, 2009 at 11:08 PM, Shlomi Fish <shlo...@iglu.org.il> > wrote: > > > Hi Ori! > > > > > > Thanks for your message, and for not top-posting. See below for my > > > response. > > > > > > On Tuesday 20 Oct 2009 13:29:02 Ori Idan wrote: > > > > On Tue, Oct 20, 2009 at 1:17 PM, Shlomi Fish <shlo...@iglu.org.il> > > > > > > wrote: > > > > > Hi Ori! > > > > > > > > > > On Saturday 17 Oct 2009 20:39:46 Ori Idan wrote: > > > > > > It seems as if you are trying to be different just for the sake > of > > > > > > being different. > > > > > > You get enough people saying they prefer wordpress for several > > > > > > reasons > > > > > > > > and > > > > > > > > > > > you reject it just because many people are using it. > > > > > > > > > > Why do you think that? > > > > > > > > I have read many people urging you to use wordpress,even Lior who is > a > > > > drupal geek advised you to use wordpress. > > > > However I did not hear any argument against wordpress, other then the > > > > argument that the fact that many people use it is not a reason by > > > > itself (which I tend to agree). > > > > I did not read or do not remember reading a real reason from you why > > > > not use a known and good platform such as wordpress. > > > > > > I'm sorry if I have made this impression, and it's possible I did. I > > > realise I > > > may have come up as an anti-conformism zealot who does "davka" to > people > > > just > > > because they all tell him something else. > > > > > > However, in my original message, I gave several reasons why I would > > > prefer to > > > avoid WordPress, and why I dislike it and distrust it (its popularity > put > > > aside). That and when I replied to the people on the list, I explained > > > using > > > reason, logic and experience why they are wrong. > > > > > > Allow me to quote my original message: > > > > > > <<<<<<<<<<<<<<<<<< > > > 1. WordPress - lots and lots of security holes, too basic functionality > > > by default; requires a bootload of plugins to convert into a usable > state > > > which > > > many bloggers won't install; and has lots of bugs - it already ate some > > > of my > > > comments and refused to let me post them again, and the blog owners did > > > not know what to do about it. > > > > > > I think I'll pass. > > > > > > > > I guess every complex software system has security holes and if you can > > > > install some plugins that will fix it then it is Ok. > > It is likely impossible to completely eliminate all security holes in a > complex system (at least not without investing a lot of money in writing it > more carefully and methodically - e.g: in some military / space software). > However, by incorporating some good practices, one can make sure, the > software > will have a relatively small number of security holes. See for example > OpenBSD. > > In the case of WordPress, it is poorly written in a programming language > (PHP) > which requires to pay extreme care and invest a lot of time in getting > things > right, so you must anticipate it to contain many security holes, some of > them > will eventually influence us. > > The plugins are unable to fix security problems in the core WordPress code, > at > least not until the problems with the code are discovered. > > And I'm reluctant to install dozens of plugins just to get some basic > functionality working, which was another of my criticism of WordPress.org, > which is ten-times more troublesome on wordpress.com on which bloggers, > much > less blog commentors have no control. > > > I find it strange that you say such things on a system that is so widely > > used as wordpress. > > What makes you think that? Many widely used systems suck: Windows, PHP, > PHP- > BB, PHP-Nuke/PostNuke (formerly - they are mostly dead now), sendmail, > MySQL, > and the list goes on. WordPress is no exception. > > > I guess that the system you wanted to install that I have never heard of > > and I guess has about 1% of the users of wordpress might have more > > security holes. > > MovableType has had much fewer security holes than WordPress, and has seen > more releases. According to http://en.wikipedia.org/wiki/Movable_Type its > last > release was version 4.3 - 3 months ago and there were no showstopping bugs > to > warrant a newer release since then (while WordPress has had an active and > dangerous worm since then.) > > I'm surprised you didn't hear about MT. It used to be very popular before > WordPress.org came along. One problem with it that was that it didn't used > to > be open-source, and after a licence change many people looked for > alternatives. Now, it's GPLed and has this fork: > > http://openmelody.org/ > > > Also when you say security holes, I think you have to check what are the > > odds for damage and what kind of damage. > > A security hole can wipe our entire database or irreversibly insert spam > there. > > > After all even Linux has security problems, however comparing to other > > systems even in wider use, it's problems are small. > > The problems of WordPress are anything but small. > > > When you choose a system for a website that is not yours private and many > > other people would work on it, I think you should take into account the > > time needed for them to learn how to use the system. > > It's not hard to use MovableType or OpenMelody or whatever, as far as > posting > posts, adding comments, etc. is concerned. It's possibly easier than > WordPress.org. I don't expect there to be many volunteers to write custom > plugins for a WordPress.org installation and they are likely to make it > harder > to upgrade, so I'll never agree to it, assuming we use WordPress. > > And it won't hurt people to learn to use another system. Otherwise, we'd > all > still be using Fortran. > > > Most people urged you to use wordpress but you try to show them they are > > wrong. why? > > Because I know they are wrong. I've replied to their arguments, and still > all > I hear is the broken record of "WordPress is the most popular solution so > you > should use it, despite all of its security problems and many quirks and > bugs.". > > So if anyone cannot convince me, I'll have to go with it. I'm the one who > volunteered to set up www.iglu.org.il as an Israeli FOSS news site > primarily > in the English language, so I get to veto it. I believe I'm right in > thinking > that WordPress is the wrong solution here. > > Regards, > > Shlomi Fish > > > > > -- > ----------------------------------------------------------------- > Shlomi Fish http://www.shlomifish.org/ > "The Human Hacking Field Guide" - http://shlom.in/hhfg > > Chuck Norris read the entire English Wikipedia in 24 hours. Twice. >
_______________________________________________ Discussions mailing list Discussions@hamakor.org.il http://hamakor.org.il/cgi-bin/mailman/listinfo/discussions
