{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Explosion°爆炸 的问题《using django apps vs established apps…security?》','https://www.manongdao.com/q-1063787.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
Ive been making a site in django and thinking about using some of the apps available online for things like wiki or forum. I was wondering what the drawbacks were. Are those apps likely to be less secure that using something like vbulletin or mediawiki instead?
In general is django pretty secure to begin with? I know almost nothing about security so I find myself wondering sometimes.
vBulletin and MediaWiki are pretty insecure apps. I think typical django app is much more secure than these two :-)
Django by default prevents many security mistakes (SQL injection, xss, csrf) so developer should make an effort to create insecure app.