Forums

Security

Checkmate 06 May, 2008
Was just wondering about the security of ChronoForms.

Is it safe enough to use with sensitve information?

I know sending sensitive information through email is unsecure.

But is having the forms just collect the data in the ChronoForms tables and exporting as excel files a secure way of collecting sensitive information?

I looked but if there is already a post about this please let me know. An article on the security of ChronoForms would be very helpful.

Thanks!
GreyHead 07 May, 2008
Hi checkmate,

ChronoForms itself is reasonably secure and it's a part of the whole Joomla model which is also reasonably secure. However, it's probably crackable for someone reasonably determined and Joomla is widely used to it's targeted by lots of would be hackers . . .

If the information is personally or commercially sensitive then it's probably worth taking more care of it. You could encrypt it before saving and store it in a separate database from the standard Joomla one, and probably more . . ..

Depends on how you asses the risks and the costs.

Bob
Checkmate 07 May, 2008
Thanks for the reply Bob,

1. Is there a walk through on how to point chronoforms to a different database? I think you guys have a great product and would benefit greatly from some additional support for security.

2. After the record is created there is the option to delete it, does that remove it completely from the database or does it just keep the loged-in users from being able to see it?

Thanks!
This topic is locked and no more replies can be posted.