Strategies for a Secure CMS

The CentricMinds Enterprise Web Content Management System is now more flexible and able to meet the requirements of your enterprise security and password policies, effectively ensuring a secure CMS. Following are processes that have been implemented.

Brute force attack detection
Quite often malicious users will attempt to compromise systems through the use of brute-force password attacks. The CentricMinds Enterprise Web Content Management System implements a brute force detection mechanism to disable accounts that have had attempted compromises made upon them.

Enchanced XSS and SQL injection protection
Content publishers can rest assured that their content is safe from Cross Site Scripting (XSS) and SQL injection attacks. The CentricMinds Enterprise Web Content Management System now has improved searching and logging capabilities for attacks from malicious users who attempt to use XSS and SQL injections. Account hijacking and form sniffing is now a thing of the past!

Enhanced security for systems running multiple sites on a single machine
For those organisations that run multiple sites on a single server instance using the CentricMinds Enterprise Web Content Management System now have better capabilities of ensuring that content between them is not sniffed-out through the use of "parameter crafting" by account holders or public users. This is achieved through the system's use of Encrypted Request objects.