I didn't think phpBB is buggy/dangerous to the web server, but from what my host admin is saying phpBB is buggy and dangerous.
I wanted to get others views on wheter someone could really hack the server just because there is phpBB installed, and also. I was under the impression there was a way to secure a sever so that people who use the server can not create a hole in the security.
I know there's a lot of hosting companies out there where you can install about anything and I have always assumed that isn't compromising other peoples accounts.
"A new release of phpBB 2.0.6 is now available for download, phpBB 2.0.6d. This addresses a vulnerability in viewtopic, a potential issue with login and may address current issues with Zend Optimizer 2.5.
heh. I haven't had much experience with forums. I will try invision next time.
To be honest I have been really unhappy with this guy who is managing the server. I am used to the main stream hosting services and this is not one of those. I'm glad to see someone else feels the same way though.
From what I have read I believe if you have the server patched and configured correctly mysql databases should be isolated for each individual site and you shouldn't be able to run a php command that will compromise the server.
I encourage my users to use phpBB. Lets face it, if you don't update your software you will be hacked. phpBB is a complex piece of software and will have vunerabilities. As far as what my users are encouraged to use and what I use, phpBB all the way.
Well I don't see why it is dangerous....
But well if you really really want a highly secure machine, I suggest unplugging all connections to the internet, rip off all the disk drives, solder shut all communications ports and locking your keyboard and mouse.... LOL
Anyway, anything that uses the SQL, php, asp or CGI would take up more resources. But if you are paying for it I don't see why you can't even host a forum software....
No software is bug-free. PHPbb has it share. But if you been following the bugs, the recent exploits do not allow you to compromise a whole server. Whoever says that do not know what they are doing. That said, even if PHPbb is the buggiest software on Earth, a well-configured machine will still prevent it from compromising the whole server.
End of the day, if you patch them as new holes are found (just like how a good host maintains his server), I really doubt you will have a problem.
Well.... The BIGGEST and BADDEST one that I have seen was the HiveMail Version 1.2.2
I have installed it on a Cobalt RaQ550 with only 1 domain abd dedicated ALL resources to it..... But it can still manage to jam and overload the CPU..... ( Its only a 1Ghz machine but still 1 domain to one 1Ghz Server and over loading it is sheer madness... Their new version is some what better )
But as to phpBB as I have mentioned earlier, I don't see why it can be dangerous. As I personally am hosting more than 600 individual forums on 1 Server
600 forums in a machine? But how big are the forums? From my experiences a good and popular forum can easily suck up all the CPU and resources of a box. If one of out those 600 is a popular one, that will be a prob. I think WHT would take a few clustered servers to run......