I have to back up everyone else here. Security cannot lie entirely on the application. It takes both application and server security measure to have a "secure" environment. If you're not willing to make adjustments in server settings to secure an application, then that is something you've made a conscious not to do, and are therefor assuming the risk of an exploit happening. As a developer I can write an application that is really secure, but if the server isn't set up properly to compliment the security provided by the application, then there isn't much more I can do. I would strongly encourage you to re-think and consider Jian's suggestion if you are truly worried about this.
-- You received this message because you are subscribed to the Google Groups "RedDot CMS Users" group. To view this discussion on the web visit https://groups.google.com/d/msg/reddot-cms-users/-/RS94sYr_7rMJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/reddot-cms-users?hl=en.
