CMS Decision - answers on Drupal

[seth vidal]

> However, one of the main arguments against Drupal was security
> problems, supposedly inherent to PHP based software. My claim is that
> when OSS is used in high profile scenarios it gets tested thoroughly
> against attempted attacks. 

To be honest the above is a not-so-terribly-well-founded assumption.
Just b/c code is open doesn't mean it gets audited. It means it CAN get
audited - but not that it does. I think you'll have a hard time backing
up that claim with evidence.

Moreover one of the other arguments against php was that as all of the
rest of the tools that do just about ANYTHING in fedora are written in
python that it would be easier to integrate and borrow routines if we
were using the same language.

We (fedora) should be encouraging a single dynamically typed and a
single statically typed language. It helps keep us on message and it
means the tools are less painful to install as they require fewer
diverse dependencies.

so there's much more to it than just security.

But to be honest, I'm tired of all this shit. I'm too busy to help with
it and I'm tired of hearing about it.

The new box for fedoraproject.org should be racked and in place tomorrow
or Friday. Once that's done I'll setup the user account system Elliot
worked on, configure the backups and leave it the hell alone.

I'll just go on the record as saying I think drupal and php are poor
choices for this system and will cause problems for us in the long run.
Y'all can figure out how to solve the problems. I'll just make sure the
box keeps running and that our backups are good for WHEN the site gets
defaced.

-sv