Bespoke CMS

[s_ainley87]

Hello,

 

I wanting to create my own CMS as a little side project, I was hoping people may be able to give some advice on the matter? SUch asthings like how long it would take, things to watch out for ETC?

 

Thanks

[JasonLewis]

A CMS can be quite large as it can do a lot or a small amount of tasks. It depends on how detailed and large you are planning on making it.

Things to watch out for, security. This is always an issue. Just make sure you have good error handling and protect information very carefully. But it all boils down to how large it will turn out to be.

[s_ainley87]

It is basically there to allow 3 or 4 people within an organisation to add edit review and delete new items, and other page details, and also do the same for images.

[waynew]

1: Learn to sanitize input. Research mysql_real_escape_string and htmlentities.

 

2: Whenever you're using GET variables, strip tags and sanitize them just like any other input.

 

3: Make sure that once the project is live, turn off error reporting.

 

4: Make sure that your admin login IS NOT called something like admin.php or anything like that. Put it in a directory two folders down along the way. In each folders that have include files or anything else that you don't want somebody to peer into, place an index.php with a redirect to the homepage.

 

5: Keep your code simple. Simple code is more secure. Complex code leaves holes.