SitePoint Sponsor |
|
User Tag List
Results 1 to 6 of 6
Thread: Blog tool security
-
Apr 25, 2005, 05:23 #1
- Join Date
- Mar 2003
- Location
- Maryland, USA
- Posts
- 107
- Mentioned
- 0 Post(s)
- Tagged
- 0 Thread(s)
Blog tool security
All,
My company is thinking of using a blogging package as a way to share information about various related projects on our Intranet. The thing is that many of our projects are team efforts with sub-contractors, on other occasions these same companies are our prime competitors.
Management likes the idea of sharing information via the Intranet as it costs less than travel and uses less resources than meetings, but is worried about the security of information in the blogs. They have divided their concerns int a couple of areas.
1. Keeping posts private from subs when needed.
2. Being able to track who posted what and when.
I have tried to run through Google but have had a hard time sorting out the security related blogs from articles on the security of blogs. Any information you have would be greatly appreciated.R
MH
-
Apr 25, 2005, 05:35 #2
- Join Date
- Jan 2002
- Location
- Canada
- Posts
- 6,364
- Mentioned
- 0 Post(s)
- Tagged
- 0 Thread(s)
Who posted what and when is pretty easy. Standard user management. No blog software out there will support hiding posts from subs, I don't think - -blogging is made to be public. You'll probably need a custom application for it.
- Nathan
-
Apr 25, 2005, 06:06 #3
- Join Date
- Mar 2003
- Location
- Maryland, USA
- Posts
- 107
- Mentioned
- 0 Post(s)
- Tagged
- 0 Thread(s)
Thanks I was afraid that might be the answer although I was thinking that if we adopted one of the systems that generate static HTML that I could use .htaccess or a Certificate based authentication system to restrict access.
R
MH
-
Apr 25, 2005, 07:04 #4
Originally Posted by someonewhois
-
Apr 25, 2005, 13:10 #5
- Join Date
- Jan 2002
- Location
- Canada
- Posts
- 6,364
- Mentioned
- 0 Post(s)
- Tagged
- 0 Thread(s)
Originally Posted by vgarcia
Personally I would just require all readers to signup, and then put them into different groups, and then when you write an entry, you chose which member groups can view it. Shouldn't be any fowlups there, and then each person has their own login that can be used to track their entries.- Nathan
-
Apr 26, 2005, 06:13 #6
- Join Date
- Mar 2003
- Location
- Maryland, USA
- Posts
- 107
- Mentioned
- 0 Post(s)
- Tagged
- 0 Thread(s)
The only problem is that on an Intranet the size of the one I am working on it would become a full time position to manage access to the number of blogs and users wishing access. As I stated in my earlier post, I believe that the best solution is going to involve using PKI to authenticate users and groups to prevent the overhead of maintaining users accounts.
R
MH
Bookmarks