CMS is a very traditional content management system, and php development is still the mainstream in the market. But the company requires Java, a very stable, secure and robust language.
Everyone attaches great importance to the issue of information security, and network management is becoming more and more strict. Many important stations require equal protection verification. Government stations must pass three levels of equal protection. State owned enterprises, schools and stations require equal protection. All hardware and middleware need to be localized.
Therefore, when choosing cms, we will also pay attention to the security of cms system. Many cms website building systems in China cannot pass the level protection. Previously, some government and college websites need to be upgraded. Because of the security problem, it is required to switch from php to java, so I chose MCMS which ranks high in open source China. I have experienced the free version of MCMS provided online, and the free version is actually enough. If peer-to-peer security can be used directly for every requirement, and the system security needs to be more rigorous, you can pay to use their government version. The following screenshot describes the main security settings.
security setting
In the security settings, you can control the security settings of account login. For example, the encryption method supports the national password SM4, supports the dual factor login, supports the complex password rule settings, disables the default account by one button, and modifies the password periodically. It can be said that the settings are complete
Audit management
It can only be said that it is enough. After we got all the source code, we added part of the audit. It is quite convenient to open the code for the second time. After all, the technology is responsible for guiding the payment.
In the end, I passed the waiting insurance level 3 smoothly. Now we are implementing open source MCms for small projects and government MCms for government affairs
