{"id":8412,"date":"2016-05-31T10:46:39","date_gmt":"2016-05-31T08:46:39","guid":{"rendered":"https:\/\/www.websupport.sk\/blog\/?p=8412"},"modified":"2025-03-11T21:06:48","modified_gmt":"2025-03-11T20:06:48","slug":"bezpecne-pouzivat-opensource-cms","status":"publish","type":"post","link":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/","title":{"rendered":"Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS?"},"content":{"rendered":"<span class=\"span-reading-time rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\"><b>Doba \u010d\u00edtania:<\/b><\/span> <span class=\"rt-time\"> 5<\/span> <span class=\"rt-label rt-postfix\">min.<\/span><\/span><p>\u00davodom mi dovo\u013ete venova\u0165 sa najm\u00e4\u00a0Drupalu, ktor\u00fd pozn\u00e1m najlep\u0161ie. Cel\u00e1 t\u00e9ma je ako re\u0165az, m\u00e1 viac navz\u00e1jom s\u00favisiacich ohniviek a treba sa venova\u0165 ka\u017ed\u00e9mu z nich.<\/p>\n<h2>Open-source vs. vlastn\u00e9 CMS<\/h2>\n<p>O v\u00fdhod\u00e1ch pou\u017e\u00edvania open-source sa pop\u00edsalo ve\u013ea. Je to filozofick\u00e1 ot\u00e1zka pr\u00edstupu k projektom aj ku klientovi. \u00cds\u0165 do vlastn\u00e9ho CMS pova\u017eujem v dne\u0161nej dobe pri rie\u0161en\u00ed \u0161tandartn\u00fdch probl\u00e9mov za ur\u010dit\u00e9 riziko (bezpe\u010dnos\u0165, efekt\u00edvnos\u0165 v\u00fdvoja). Jednak si vytv\u00e1rate ur\u010dit\u00fa z\u00e1vislos\u0165 na dod\u00e1vate\u013eovi (tzv. vendor locking) a taktie\u017e je tu mo\u017enos\u0165 vytvorenia \u0165a\u017eko odhalite\u013enej chyby (tzv. security through obscurity). Pri nieko\u013ek\u00fdch desiatkach in\u0161tal\u00e1ci\u00ed webstr\u00e1nky by to bola sk\u00f4r n\u00e1hoda alebo ve\u013ek\u00fd amaterizmus.<\/p>\n<p>Ve\u013ek\u00e9 CMS s\u00fa na tom s bezpe\u010dnos\u0165ou va\u010d\u0161inou r\u00e1dovo inde. Pri st\u00e1tis\u00edcoch projektov je ka\u017ed\u00e9 riziko probl\u00e9m ve\u013ek\u00e9ho po\u010dtu \u013eud\u00ed. Ve\u013ea in\u0161tal\u00e1ci\u00ed znamen\u00e1 ve\u013ea testovan\u00ed a z\u00e1rove\u0148 ve\u013ea pokusov o zlomenie syst\u00e9mu. Tlaky na vyrie\u0161enie bezpe\u010dnostn\u00fdch probl\u00e9mov v nich s\u00fa preto obrovsk\u00e9.<\/p>\n<p>Najlep\u0161ie je, \u017ee pri open-source sa probl\u00e9m sk\u00f4r \u010di nesk\u00f4r vyrie\u0161i \u201cs\u00e1m\u201d (vi\u010f \u010fal\u0161\u00ed odstavec).<\/p>\n<h2>Bezpe\u010dnos\u0165 jadra CMS<\/h2>\n<p>Na\u0161\u0165astie najv\u00e4\u010d\u0161ie open-source (WordPress, Drupal, Joomla, TYPO3) po rokoch v\u00fdvoja pripl\u00e1vali do relat\u00edvne bezpe\u010dn\u00fdch v\u00f4d a ich jadr\u00e1 s\u00fa pri dodr\u017ean\u00ed z\u00e1kladn\u00fdch pravidiel pomerne v poriadku. Maj\u00fa zriaden\u00e9 bezpe\u010dnostn\u00e9 t\u00edmy a procesy, pomocou ktor\u00fdch sa daj\u00fa probl\u00e9my reportova\u0165 a tie\u017e rie\u0161i\u0165 (<a href=\"https:\/\/www.drupal.org\/security-team\" target=\"_blank\">Drupal<\/a>, <a href=\"https:\/\/wordpress.org\/about\/security\/\" target=\"_blank\">WordPress<\/a>). Nieko\u013eko kr\u00e1t do roka vych\u00e1dza bezpe\u010dnostn\u00e1 aktualiz\u00e1cia, ktor\u00fa netreba ignorova\u0165. V minulosti sa stalo, \u017ee aj hlavn\u00e9 verzie mali principi\u00e1lny probl\u00e9m a nieko\u013eko mesiacov bol web \u00faplne otvoren\u00fd (SQL injection).<\/p>\n<p><strong>Naj\u010dastej\u0161ie probl\u00e9my webstr\u00e1nok platia v\u0161eobecne:<\/strong><\/p>\n<ul>\n<li>SQL Injection &#8211; datab\u00e1zov\u00e9 dopyty posielan\u00e9 z pou\u017e\u00edvate\u013esk\u00e9ho vstupu<\/li>\n<li>Cross Site Scripting (XSS) &#8211; \u00a0upraven\u00fd v\u00fdstup do prehliada\u010da cez modifikovan\u00fa URL (napr\u00edklad cez jQuery, WYSIWYG)<\/li>\n<li>Cross Site Request Forgery (CSRF) &#8211; odosielanie pr\u00edkazov napr. cez adresy obr\u00e1zkov, vstupov z formul\u00e1rov a podobne<\/li>\n<\/ul>\n<p>Tieto kritick\u00e9 miesta maj\u00fa oba syst\u00e9my u\u017e za sebou. Minim\u00e1lne v okruhu Drupalistov (WP neviem) sa t\u00e9ma bezpe\u010dnosti rie\u0161ila na ka\u017edom stretnut\u00ed komunity &#8211; konferencii, <a href=\"http:\/\/drupalcamp.sk\/\" target=\"_blank\">DrupalCamp<\/a>e, DrupalCone a mus\u00edm poveda\u0165, chv\u00e1la Bohu! Aj v\u010faka tomu m\u00f4\u017eeme lep\u0161ie sp\u00e1va\u0165.<\/p>\n<p>Napr\u00edklad pri WordPresse sa aktualiz\u00e1cia pluginov deje p\u00e1r klikmi. Pri security update jadra v\u00e1m v ide\u00e1lnom pr\u00edpade pr\u00edde mail o \u00faspe\u0161nom upgrade syst\u00e9mu.<\/p>\n<p>Pri Drupale treba ma\u0165 zapnut\u00fd modul \u201cupdate manager\u201d, \u00a0aby v\u00e1m chodili notifik\u00e1cie o potrebe aktualiz\u00e1cie. Update si urob\u00edte manu\u00e1lne (FTP, drush), alebo v\u00e1m pr\u00edde\u00a0bezpe\u010dnostn\u00fd newsletter.<\/p>\n<h2>Bezpe\u010dnos\u0165 extern\u00fdch modulov a kni\u017en\u00edc<\/h2>\n<p>V\u0161etky CMS pon\u00fakaj\u00fa tis\u00edce vo\u013en\u00fdch alebo spoplatnen\u00fdch modulov a pluginov. Aj ich nespr\u00e1vna vo\u013eba m\u00f4\u017ee v\u00e1\u017ene naru\u0161i\u0165 bezpe\u010dnos\u0165 celej str\u00e1nky. Mnoh\u00e9 z nich pou\u017e\u00edvaj\u00fa navy\u0161e extern\u00e9 kni\u017enice, ktor\u00e9 m\u00f4\u017eu obsahova\u0165 \u0161kodliv\u00fd k\u00f3d.<\/p>\n<p>Syst\u00e9my maj\u00fa zadefinovan\u00e9 &#8222;best practices&#8220; pre v\u00fdvoj\u00e1ra modulov, ktor\u00e9 s\u00fa podmienkou pri schva\u013eovan\u00ed k\u00f3du. Samotn\u00e9 schva\u013eovanie nie je jednoduch\u00e9 a trv\u00e1 dlho. Z \u010dasti pom\u00f4\u017eu automatick\u00e9 valid\u00e1tory k\u00f3du, ktor\u00e9 odhalia z\u00e1kladn\u00e9 chyby (syntax, form\u00e1t, bezpe\u010dnos\u0165), ale fin\u00e1lny krok je na komunite v\u00fdvoj\u00e1rov. Pre spr\u00e1vny v\u00fdvoj modulov si pre\u010d\u00edtajte &#8211; <a href=\"https:\/\/www.drupal.org\/coding-standards\" target=\"_blank\">Drupal coding standards<\/a> , <a href=\"http:\/\/codex.wordpress.org\/Hardening_WordPress\" target=\"_blank\">WordPress best practices<\/a> , <a href=\"https:\/\/docs.joomla.org\/Development_Best_Practices\" target=\"_blank\">Joomla Best Practices<\/a>, <a href=\"https:\/\/docs.typo3.org\/typo3cms\/CodingGuidelinesReference\/CodingBestPractices\/Index.html\" target=\"_blank\">TYPO3 guidlines<\/a>.<\/p>\n<p>Napr. Drupal m\u00e1 prepracovan\u00fd <a href=\"https:\/\/www.drupal.org\/node\/1011698\" target=\"_blank\">postup vytv\u00e1rania modulov<\/a>.<\/p>\n<p>Zauj\u00edmav\u00fd je koncept vz\u00e1jomn\u00e9ho schva\u013eovania modulov &#8211; Bonus Program, \u00a0je to syst\u00e9m kontroly, kde ak ja skontrolujem minim\u00e1lne 3 \u010fal\u0161ie projekty a minim\u00e1lne traja in\u00ed skontroluj\u00fa m\u00f4j projekt, proces sa tak ur\u00fdchli a skvalitn\u00ed. Celkom pote\u0161uj\u00faci je aj projekt <a href=\"http:\/\/pareview.sh\/\" target=\"_blank\">Pareview.sh<\/a>, kde sa daj\u00fa kontrolova\u0165 a testova\u0165 cel\u00e9 repozit\u00e1re v sandboxe.<\/p>\n<p>Je spr\u00e1vne a vy\u017eadovan\u00e9 nahr\u00e1va\u0165 extern\u00e9 kni\u017enice (javascript, php) do \u0161peci\u00e1lneho adres\u00e1ra \u201clibraries\u201d, ktor\u00fd je ur\u010den\u00fd len na \u010d\u00edtanie.<\/p>\n<h2>Chybn\u00e1 konfigur\u00e1cia CMS<\/h2>\n<p>Toto je ve\u013ek\u00fd probl\u00e9m administr\u00e1torov webstr\u00e1nok a ve\u013ek\u00e1 bezpe\u010dnostn\u00e1 diera.<\/p>\n<p>V\u0161etci klika\u010di, ob\u010dasn\u00ed implement\u00e1tori sypte popol na hlavu. Trivi\u00e1lne hesla pre klientov (ve\u010f si ich nesk\u00f4r zmenia), benevolentn\u00e9 nastavenie pr\u00e1vomoc\u00ed v r\u00e1mci redak\u010dn\u00e9ho syst\u00e9mu, ch\u00fdbaj\u00faca antispam \/ boot ochrana, nespr\u00e1vne nastavenie pr\u00e1va na z\u00e1pis do adres\u00e1rov, mo\u017enos\u0165 \u010d\u00edtania settings \/ config s\u00faboru s pr\u00edstupom do datab\u00e1zy &#8211; to s\u00fa tie najv\u00e4\u010d\u0161ie chyby, ktor\u00e9 v\u00e1s, sk\u00f4r, \u010di nesk\u00f4r dobehn\u00fa.<\/p>\n<p>Drupal m\u00e1 hne\u010f nieko\u013eko pom\u00f4cok. Priamo v kontrole stavu Drupal in\u0161tal\u00e1cie v\u00e1m vysko\u010dia hlavn\u00e9 probl\u00e9my (napr. vy\u0161\u0161ie spomenut\u00e9 write permissions). Komu to nesta\u010d\u00ed &#8211; m\u00f4\u017ee pou\u017ei\u0165 moduly <a href=\"https:\/\/www.drupal.org\/project\/security_review\" target=\"_blank\">Security review <\/a>alebo <a href=\"https:\/\/www.drupal.org\/project\/hacked\" target=\"_blank\">Hacked<\/a> na hlb\u0161iu kontrolu zabezpe\u010denia webu. Aj v r\u00e1mci Drupalu existuj\u00fa platen\u00e9 slu\u017eby a <a href=\"https:\/\/www.drop-guard.net\/\" target=\"_blank\">DropGuard<\/a> je jednou z nich, ktor\u00e1 udr\u017euje v\u00e1\u0161 web v dobrej kond\u00edcii.<\/p>\n<p>WordPress m\u00e1 na to tie\u017e modul WP <a href=\"https:\/\/wordpress.org\/plugins\/wp-security-scan\/\" target=\"_blank\">Security Scan<\/a> alebo platen\u00e9 slu\u017eby. V tomto oh\u013eade mus\u00edm pochv\u00e1li\u0165 server administr\u00e1torov WebSupportu, ktor\u00fd pripravili pre svojich klientov <a href=\"https:\/\/www.websupport.sk\/support\/881451-Kontrola-napadnut%C3%A9ho-hostingu\" target=\"_blank\">WebScanner<\/a>, ktor\u00fd funguje celkom spo\u013eahlivo. Predpoklad\u00e1m, \u017ee chceli u\u013eah\u010di\u0165 \u017eivot klientom ale hlavne sebe : )<\/p>\n<p>Asi ste za\u017eili zdesen\u00fd telefon\u00e1t od klienta, \u017ee mu WebSupport posielam mail, \u017ee m\u00e1 napadnut\u00fa str\u00e1nku. Toto funguje.<\/p>\n<h2>Najv\u00e4\u010d\u0161\u00edm probl\u00e9m &#8211; aktualiz\u00e1cia<\/h2>\n<p>Pre klientov: \u00a0Vrelo odpor\u00fa\u010dam dohodn\u00fa\u0165 sa s dod\u00e1vate\u013eom po odovzdan\u00ed projektu, nech sa v\u00e1m o web na\u010falej star\u00e1. T\u00fdch &#8222;p\u00e1r eur&#8220;\u00a0mesa\u010dne zvl\u00e1dnete. Rozhodne to vyv\u00e1\u017ei mo\u017en\u00e9 riziko.<\/p>\n<p>Pre dod\u00e1vate\u013eov: Vrelo odpor\u00fa\u010dam dohodn\u00fa\u0165 sa s klientom, \u017ee mu za &#8222;p\u00e1r eur&#8220; budete webstr\u00e1nku pravidelne aktualizova\u0165, vyhnete sa tak ve\u013ekej blam\u00e1\u017ei.<\/p>\n<p>Asi ste zaregistrovali kauzu posledn\u00fdch t\u00fd\u017ed\u0148ov &#8211; Panama papers, obrovsk\u00fd \u00fanik tajn\u00fdch inform\u00e1ci\u00ed a dokumentov z da\u0148ov\u00e9ho raja. Mohli za to vraj okrem Putina neaktualizovan\u00e9 verzie WordPressu a Drupalu. Mili\u00f3nov\u00e1 firma si nevedela zabezpe\u010di\u0165 aktualiz\u00e1cie za &#8222;p\u00e1r eur&#8220;. Ak to aj bolo inak, je to v\u00fdstraha pre v\u0161etk\u00fdch.<\/p>\n<p><strong>Viac o t\u00e9me:<\/strong><\/p>\n<ul>\n<li><a href=\"http:\/\/www.theregister.co.uk\/2016\/04\/07\/panama_papers_unpatched_wordpress_drupal\/\">theregister.co.uk<\/a><\/li>\n<li><a href=\"http:\/\/www.root.cz\/zpravicky\/za-aferu-panama-papers-muzou-asi-stare-verze-wordpressu-drupalu-a-outlooku\/\" target=\"_blank\">root.cz\/zpravicky<\/a><\/li>\n<\/ul>\n<h2>Tipy a triky na z\u00e1ver<\/h2>\n<p>Existuje zop\u00e1r r\u00e1d, ktor\u00fdmi sa odpor\u00fa\u010dam dr\u017ea\u0165, okrem vy\u0161\u0161ie spomenut\u00e9ho.<\/p>\n<p>D\u00f4le\u017eit\u00e1 je vo\u013eba d\u00f4veryhodn\u00e9ho modulu &#8211; pluginu. Treba sa orientova\u0165 pod\u013ea po\u010dtu stiahnut\u00ed, hodnoteniu, frekvencie aktualiz\u00e1ci\u00ed, pr\u00edpadne zoznam a rie\u0161enie ch\u00fdb.<\/p>\n<p>Ak to CMS podporuje, je dobr\u00e9 nepou\u017e\u00edva\u0165 predvolen\u00e9 nastavenia. Napr\u00edklad Drupal uklad\u00e1 nahran\u00e9 obr\u00e1zky a pr\u00edlohy do adres\u00e1ra \u201csites\/default\/files\u201d, ale \u013eahko ich m\u00f4\u017eete umiestni\u0165 hocikde inde. Podobne to je s adres\u00e1rom \u201cprivate\u201d, kde sa ukladaj\u00fa priv\u00e1tne pr\u00edlohy, m\u00f4\u017eete ho nazva\u0165 a umiestni\u0165 hocikde inde.<\/p>\n<p>Odpor\u00fa\u010dam si prejs\u0165 aj tieto <a href=\"https:\/\/www.acquia.com\/blog\/keeping-drupal-secure\" target=\"_blank\">typy na udr\u017eanie Drupalu<\/a> v kond\u00edcii, vr\u00e1tane infografiky update cykloch.<\/p>\n<p>Bezpe\u010dnos\u0165 open-source redak\u010dn\u00fdch syst\u00e9mov je otvoren\u00e1 t\u00e9ma.\u00a0Ak sa teda ob\u00e1vate ako klient alebo program\u00e1tor pou\u017e\u00edva\u0165 open-source redak\u010dn\u00e9 syst\u00e9my, nie je sa \u010doho ob\u00e1va\u0165 pri dodr\u017ean\u00ed bezpe\u010dnostn\u00fdch pokynov.<br \/>\nPosolstvo na z\u00e1ver: Aktualizujte!<\/p>\n<p class=\"p1\"><span class=\"s1\">[mc4wp_form]<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u00davodom mi dovo\u013ete venova\u0165 sa najm\u00e4\u00a0Drupalu, ktor\u00fd pozn\u00e1m najlep\u0161ie. Cel\u00e1 t\u00e9ma je ako re\u0165az, m\u00e1 viac navz\u00e1jom s\u00favisiacich ohniviek a treba sa venova\u0165 ka\u017ed\u00e9mu z nich. Open-source vs. vlastn\u00e9 CMS O v\u00fdhod\u00e1ch pou\u017e\u00edvania open-source sa pop\u00edsalo ve\u013ea. Je to filozofick\u00e1 ot\u00e1zka pr\u00edstupu k projektom aj ku klientovi. \u00cds\u0165 do vlastn\u00e9ho CMS pova\u017eujem v dne\u0161nej dobe [&hellip;]<\/p>\n","protected":false},"author":129,"featured_media":8414,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7,8,10],"tags":[46,156,232,235,667,706,889,956],"class_list":["post-8412","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","category-tipy-a-triky","category-vzdelavanie-2","tag-ako-na-to","tag-cms","tag-drupal","tag-drupalcamp","tag-pokrivcak","tag-redakcny-system","tag-update","tag-websupport"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS? - Websupport blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/\" \/>\n<meta property=\"og:locale\" content=\"sk_SK\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS? - Websupport blog\" \/>\n<meta property=\"og:description\" content=\"\u00davodom mi dovo\u013ete venova\u0165 sa najm\u00e4\u00a0Drupalu, ktor\u00fd pozn\u00e1m najlep\u0161ie. Cel\u00e1 t\u00e9ma je ako re\u0165az, m\u00e1 viac navz\u00e1jom s\u00favisiacich ohniviek a treba sa venova\u0165 ka\u017ed\u00e9mu z nich. Open-source vs. vlastn\u00e9 CMS O v\u00fdhod\u00e1ch pou\u017e\u00edvania open-source sa pop\u00edsalo ve\u013ea. Je to filozofick\u00e1 ot\u00e1zka pr\u00edstupu k projektom aj ku klientovi. \u00cds\u0165 do vlastn\u00e9ho CMS pova\u017eujem v dne\u0161nej dobe [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/\" \/>\n<meta property=\"og:site_name\" content=\"Websupport blog\" \/>\n<meta property=\"article:published_time\" content=\"2016-05-31T08:46:39+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-03-11T20:06:48+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.websupport.sk\/blog\/app\/uploads\/sites\/2\/2016\/05\/290x380x2-3.png\" \/>\n\t<meta property=\"og:image:width\" content=\"580\" \/>\n\t<meta property=\"og:image:height\" content=\"760\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Peter Pokriv\u010d\u00e1k\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Autor\" \/>\n\t<meta name=\"twitter:data1\" content=\"Peter Pokriv\u010d\u00e1k\" \/>\n\t<meta name=\"twitter:label2\" content=\"Predpokladan\u00fd \u010das \u010d\u00edtania\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 min\u00fat\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/\"},\"author\":{\"name\":\"Peter Pokriv\u010d\u00e1k\",\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/#\\\/schema\\\/person\\\/074c204d21a25bcc50a05325ed93d260\"},\"headline\":\"Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS?\",\"datePublished\":\"2016-05-31T08:46:39+00:00\",\"dateModified\":\"2025-03-11T20:06:48+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/\"},\"wordCount\":1319,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/app\\\/uploads\\\/sites\\\/2\\\/2016\\\/05\\\/290x380x2-3.png\",\"keywords\":[\"ako na to\",\"cms\",\"drupal\",\"drupalcamp\",\"pokrivcak\",\"redakcny system\",\"update\",\"websupport\"],\"articleSection\":[\"Technol\u00f3gie\",\"Tipy a triky\",\"Vzdel\u00e1vanie\"],\"inLanguage\":\"sk-SK\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/\",\"url\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/\",\"name\":\"Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS? - Websupport blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/app\\\/uploads\\\/sites\\\/2\\\/2016\\\/05\\\/290x380x2-3.png\",\"datePublished\":\"2016-05-31T08:46:39+00:00\",\"dateModified\":\"2025-03-11T20:06:48+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/#breadcrumb\"},\"inLanguage\":\"sk-SK\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"sk-SK\",\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/app\\\/uploads\\\/sites\\\/2\\\/2016\\\/05\\\/290x380x2-3.png\",\"contentUrl\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/app\\\/uploads\\\/sites\\\/2\\\/2016\\\/05\\\/290x380x2-3.png\",\"width\":580,\"height\":760},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/2016\\\/05\\\/bezpecne-pouzivat-opensource-cms\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/\",\"name\":\"Websupport blog\",\"description\":\"Websupport blog\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"sk-SK\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/#organization\",\"name\":\"Websupport\",\"url\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"sk-SK\",\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/app\\\/uploads\\\/sites\\\/2\\\/2021\\\/08\\\/websupport-logo.svg\",\"contentUrl\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/app\\\/uploads\\\/sites\\\/2\\\/2021\\\/08\\\/websupport-logo.svg\",\"width\":153,\"height\":48,\"caption\":\"Websupport\"},\"image\":{\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/#\\\/schema\\\/person\\\/074c204d21a25bcc50a05325ed93d260\",\"name\":\"Peter Pokriv\u010d\u00e1k\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"sk-SK\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/fcbd18aaea2b4ade7eb5940e05852e03f2ec15bfea4ef53cf4b80ebed6a771c5?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/fcbd18aaea2b4ade7eb5940e05852e03f2ec15bfea4ef53cf4b80ebed6a771c5?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/fcbd18aaea2b4ade7eb5940e05852e03f2ec15bfea4ef53cf4b80ebed6a771c5?s=96&d=mm&r=g\",\"caption\":\"Peter Pokriv\u010d\u00e1k\"},\"url\":\"https:\\\/\\\/www.websupport.sk\\\/blog\\\/author\\\/ing-peter-pokrivcak\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS? - Websupport blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/","og_locale":"sk_SK","og_type":"article","og_title":"Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS? - Websupport blog","og_description":"\u00davodom mi dovo\u013ete venova\u0165 sa najm\u00e4\u00a0Drupalu, ktor\u00fd pozn\u00e1m najlep\u0161ie. Cel\u00e1 t\u00e9ma je ako re\u0165az, m\u00e1 viac navz\u00e1jom s\u00favisiacich ohniviek a treba sa venova\u0165 ka\u017ed\u00e9mu z nich. Open-source vs. vlastn\u00e9 CMS O v\u00fdhod\u00e1ch pou\u017e\u00edvania open-source sa pop\u00edsalo ve\u013ea. Je to filozofick\u00e1 ot\u00e1zka pr\u00edstupu k projektom aj ku klientovi. \u00cds\u0165 do vlastn\u00e9ho CMS pova\u017eujem v dne\u0161nej dobe [&hellip;]","og_url":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/","og_site_name":"Websupport blog","article_published_time":"2016-05-31T08:46:39+00:00","article_modified_time":"2025-03-11T20:06:48+00:00","og_image":[{"width":580,"height":760,"url":"https:\/\/www.websupport.sk\/blog\/app\/uploads\/sites\/2\/2016\/05\/290x380x2-3.png","type":"image\/png"}],"author":"Peter Pokriv\u010d\u00e1k","twitter_card":"summary_large_image","twitter_misc":{"Autor":"Peter Pokriv\u010d\u00e1k","Predpokladan\u00fd \u010das \u010d\u00edtania":"7 min\u00fat"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/#article","isPartOf":{"@id":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/"},"author":{"name":"Peter Pokriv\u010d\u00e1k","@id":"https:\/\/www.websupport.sk\/blog\/#\/schema\/person\/074c204d21a25bcc50a05325ed93d260"},"headline":"Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS?","datePublished":"2016-05-31T08:46:39+00:00","dateModified":"2025-03-11T20:06:48+00:00","mainEntityOfPage":{"@id":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/"},"wordCount":1319,"commentCount":0,"publisher":{"@id":"https:\/\/www.websupport.sk\/blog\/#organization"},"image":{"@id":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/#primaryimage"},"thumbnailUrl":"https:\/\/www.websupport.sk\/blog\/app\/uploads\/sites\/2\/2016\/05\/290x380x2-3.png","keywords":["ako na to","cms","drupal","drupalcamp","pokrivcak","redakcny system","update","websupport"],"articleSection":["Technol\u00f3gie","Tipy a triky","Vzdel\u00e1vanie"],"inLanguage":"sk-SK","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/","url":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/","name":"Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS? - Websupport blog","isPartOf":{"@id":"https:\/\/www.websupport.sk\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/#primaryimage"},"image":{"@id":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/#primaryimage"},"thumbnailUrl":"https:\/\/www.websupport.sk\/blog\/app\/uploads\/sites\/2\/2016\/05\/290x380x2-3.png","datePublished":"2016-05-31T08:46:39+00:00","dateModified":"2025-03-11T20:06:48+00:00","breadcrumb":{"@id":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/#breadcrumb"},"inLanguage":"sk-SK","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/"]}]},{"@type":"ImageObject","inLanguage":"sk-SK","@id":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/#primaryimage","url":"https:\/\/www.websupport.sk\/blog\/app\/uploads\/sites\/2\/2016\/05\/290x380x2-3.png","contentUrl":"https:\/\/www.websupport.sk\/blog\/app\/uploads\/sites\/2\/2016\/05\/290x380x2-3.png","width":580,"height":760},{"@type":"BreadcrumbList","@id":"https:\/\/www.websupport.sk\/blog\/2016\/05\/bezpecne-pouzivat-opensource-cms\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.websupport.sk\/blog\/"},{"@type":"ListItem","position":2,"name":"Je bezpe\u010dn\u00e9 pou\u017e\u00edva\u0165 opensource CMS?"}]},{"@type":"WebSite","@id":"https:\/\/www.websupport.sk\/blog\/#website","url":"https:\/\/www.websupport.sk\/blog\/","name":"Websupport blog","description":"Websupport blog","publisher":{"@id":"https:\/\/www.websupport.sk\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.websupport.sk\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"sk-SK"},{"@type":"Organization","@id":"https:\/\/www.websupport.sk\/blog\/#organization","name":"Websupport","url":"https:\/\/www.websupport.sk\/blog\/","logo":{"@type":"ImageObject","inLanguage":"sk-SK","@id":"https:\/\/www.websupport.sk\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.websupport.sk\/blog\/app\/uploads\/sites\/2\/2021\/08\/websupport-logo.svg","contentUrl":"https:\/\/www.websupport.sk\/blog\/app\/uploads\/sites\/2\/2021\/08\/websupport-logo.svg","width":153,"height":48,"caption":"Websupport"},"image":{"@id":"https:\/\/www.websupport.sk\/blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.websupport.sk\/blog\/#\/schema\/person\/074c204d21a25bcc50a05325ed93d260","name":"Peter Pokriv\u010d\u00e1k","image":{"@type":"ImageObject","inLanguage":"sk-SK","@id":"https:\/\/secure.gravatar.com\/avatar\/fcbd18aaea2b4ade7eb5940e05852e03f2ec15bfea4ef53cf4b80ebed6a771c5?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/fcbd18aaea2b4ade7eb5940e05852e03f2ec15bfea4ef53cf4b80ebed6a771c5?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/fcbd18aaea2b4ade7eb5940e05852e03f2ec15bfea4ef53cf4b80ebed6a771c5?s=96&d=mm&r=g","caption":"Peter Pokriv\u010d\u00e1k"},"url":"https:\/\/www.websupport.sk\/blog\/author\/ing-peter-pokrivcak\/"}]}},"_links":{"self":[{"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/posts\/8412","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/users\/129"}],"replies":[{"embeddable":true,"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/comments?post=8412"}],"version-history":[{"count":1,"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/posts\/8412\/revisions"}],"predecessor-version":[{"id":34056,"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/posts\/8412\/revisions\/34056"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/media\/8414"}],"wp:attachment":[{"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/media?parent=8412"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/categories?post=8412"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.websupport.sk\/blog\/wp-json\/wp\/v2\/tags?post=8412"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}