SilverStripe Framework Will Stand Alone

SilverStripe Ltd. is due to release SilverStripe CMS 3.0 in alpha in October and beta by the end of the year. The biggest change to the current content management system will be the separation of the SilverStripe Framework as it’s own entity. The framework as a stable basis, formerly known as ‘Sapphire’, enables the developer to build more than just traditional websites and potentially build applications for any device and any purpose.

List of 32 Web Frameworks

Andrew Lynch posted a fantastic list of 32 Web Frameworks over at He starts off that list with Ruby on Rails, Django, Drupal, CakePHP...well you get the idea.

Frameworks are built on top of programming languages and provide methods of streamlining some of the more mundane and common tasks associated with web development. In essence, they allow developers to achieve more with less coding, saving both time and money. They provide a range of simple methods that help you connect to a database, authenticate users and build an admin backend, all with a few lines of code.

Be sure to read the complete story so you can see Andrew's review of 32 web frameworks that you have to choose from for your next project.

New Xoops Engine (X3) Goes Zend Framework

We are very pleased to present you X3, the new Xoops Engine for the next generation of XOOPS powered web application development.

XOOPS LogoThis new Xoops Engine was long time in coming. During that time, we went through different phases of trials and errors, but we believe that we finally have the best combination of features and technologies to strategically position XOOPS as one of the top Web Application Platform solutions.

The new Xoops Engine has been re-designed from the ground up to take advantages of third-party frameworks like Zend Framework and Smarty 3.

Why did we rewrite XOOPS?

XOOPS is one of the most successful Open Source CMS and portal solutions, constantly placing in top places in various competitions, and receiving various awards. But it is showing signs of aging, that would require major rewrites of the Core.

In order to keep us focused on creating a flexible and extensible development engine for developers and a high performance application platform for end users, the development team has decided to use industry-standard frameworks. By doing so, we can focus our limited resources on aspects that make XOOPS unique and special, while leaving standard functionality to be addressed by off-the-shelf frameworks. This way we can take advantage of latest internet developments already included in those frameworks - it's like getting suddenly a whole new team of some of the best and brightest PHP and RIA programmers joining XOOPS!

After much research, we've selected a couple of frameworks at this stage:

PHP: Zend Framework
Template: Smarty 3
JavaScript: jQuery

Meanwhile the multi-engine mechanism of the Xoops Engine will ensure the possibility of adopting other excellent frameworks in the future, like Yii Framework, Dojo Toolkit, etc.

Bitrix alerts about Trojan program disguising as updates for Bitrix security framework

The Trojan installs a keylogger capable to capture keystrokes including username, password and credit card number.

Bitrix, Inc., a technology trendsetter in business communications solutions, alerts customers about the existence of a Trojan program pretending to be the Bitrix security framework. The Trojan is capable of stealing confidential data from infected computers and received the highest threat level from malware experts.

Identified as a part of the “Agent” malware family, the Trojan is presumably spread using mass mailing of spam and malicious links. The malware can be delivered to the target computer in different flavors including pretending to be a Microsoft Silverlight or Bitrix security update. If a user launches the infected file, the Trojan installs itself into the system by creating multiple files and registering itself in the system registry. After installation the malware unobtrusively runs in the background, captures keystrokes and sends out collected data to an external service. This way a malicious person can obtain the user’s confidential information including username, password and credit card number.

The Trojan can be identified by the presence of “Bitrix Security” folder in the application data directory which contains a number of supplementary files and a run-time library under randomly generated names (for example xaukvmm60.dll).

Bitrix recommends that users update their virus scanners and check their computers against this malicious program.

Read more about how to protect your web assets against web-borne malware in a dedicated white paper "10 Ways to Keep Hackers in Check and Ensure Safe Web Resources" by Marcel Nizam, Head of Web Security Development at Bitrix, Inc.

Mailbag: CMSity

In the three years of running this site, I don't think I've ever been so far behind in responding to my emails.  My apologies for those that have tried to catch my attention over the past several weeks.  So let's talk about some of those emails I found in the neglected mailbag at CMS Report.

The first email is from Adam Strzelecki from nanoANT regarding his latest product, CMSity.