Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Nuxeo CPS 3.4.0 released

ScuttleMonkey posted more than 8 years ago | from the content-to-manage-content-management dept.


Stefane Fermigier writes "French open source software vendor Nuxeo has recently released version 3.4.0 of its Zope-based enterprise content management system CPS. CPS is a platform for building content management, collaboration and business process applications, that has been used in several majors projects in the French administration and industry. The result of more than one year of work by 30 contributors, CPS is one of the first major products to leverage the new Zope 3 component architecture."

cancel ×
This is a preview of your comment

No Comment Title Entered

Anonymous Coward 1 minute ago

No Comment Entered


asdf (2, Informative)

zaguar (881743) | more than 8 years ago | (#14922862)

The Wiki Article [wikipedia.org] about CPS, for those who were blindsided by the TLA.

Pointless (0)

Anonymous Coward | more than 8 years ago | (#14923461)

This topic is so worthless that you could have spent 10 minutes on your post instead of .001 minutes and still have been FP...and said something worth saying. Tool.

What is "enterprise content management"? (4, Informative)

Elixon (832904) | more than 8 years ago | (#14922929)

Source: http://en.wikipedia.org/wiki/Enterprise_content_ma nagement [wikipedia.org]
In autumn 2005 AIIM defines ECM as follows:
Enterprise Content Management is the technologies used to Capture, Manage, Store, Preserve, and Deliver content and documents related to organizational processes.
These ECM components and technologies can be categorized as:

        * Capture,
        * Manage,
        * Store,
        * Deliver, and long-term
        * Preserve.

This model is based on the five lead categories of AIIM International.

The traditional application areas are:

        * Document management (DM),
        * Collaboration (or collaborative software, groupware),
        * Web content management (WCM) (including portals),
        * Records management (RM) (archive and filing management systems on long-term storage media) and
        * Workflow / Business process management (BPM)

CMS Systems (1)

MichaelSmith (789609) | more than 8 years ago | (#14922933)

Off The Shelf content management systems bother me because they must surely be full of well known security holes.

If I had to have a CMS I would prefer to develop my own tailored system. At least that way I will have a chance of finding the bugs before a potential attacker.

Re:CMS Systems (2, Interesting)

afd8856 (700296) | more than 8 years ago | (#14922949)

You probably assume that CPS is written in PHP, which is not. I'm not familiar with CPS, but I am familiar with Plone, a somewhat related project. Zope, the underlying framework forces you to declare a security permission for every accesible method. Even XSS type of vulnerabilities would be extremely hard to find, as the CMF filters the dangerous html tags in content items(applet, script, iframe, etc). And while it's possible to create proxies for python scripts to run under a different priviledge, the framework also makes it easy to have validators for that script, so you can check for mailicious actions. Sure, there a few security related fixes in the Plone project, but I don't know yet of any exploit, as oposed to PHP counterparts, Mambo, Drupal, xoom and nukes.

Re:CMS Systems (1)

MichaelSmith (789609) | more than 8 years ago | (#14923027)

You probably assume that CPS is written in PHP, which is not.

No I can see that its written in Python. My concern is that CMS applications have a lot of code connected to open sockets and undergo rapid development.

Other applications which keep sockets open to the world include apache and qmail, but these applications change so slowly that there is time to identify and close security holes.

Re:CMS Systems (3, Insightful)

regebro (636069) | more than 8 years ago | (#14923090)

No, it doesn't have a lot of code connected to open sockets. It connects one piece of code, the ZServer, to open sockets, and that is only if you don't connect it via apache, which most people do for various reasons. The ZServer does not evolve rapidly.

Zope, which is the platform om which CPS is based, is one of the bigger open source platforms for web application development, and has to my knowledge never been broken (which of course partly is because few have tried, but there you go).

You can rest assured that anything you write will have more security holes than Zope/CPS, simply because you are the only one that can find and fix them. ;)

Re:CMS Systems (2, Informative)

Anonymous Coward | more than 8 years ago | (#14923814)

No, there have historically been very few security holes with CPS, Plone [plone.org], Silva [infrae.com], or any of the other Zope-based CMSs out there. In fact, there have been very few security holes with Zope [zope.org].

All that being said, there are a few sites that have built their own CMS on top of Zope (it has a decent CMF built into it, so it's far from impossible to roll one's own). The two biggest profile ones are probably Boston.com [boston.com] and Saugus.net [saugus.net], but I'm sure there are plenty of others.

Let's get this dealt with (0, Offtopic)

Alarash (746254) | more than 8 years ago | (#14923045)

Yes, the software surrenders after you installed it. French, surrender, get it? Ok, so now it's done, please spare us the anti-french comments.

zope 3 ? (1)

MaoTse (624765) | more than 8 years ago | (#14946386)

This is false.

Although some zope 3 technology is included (as in all zope 2.9 installations) CPS is certainly NOT based on component architecture.

It's basically another CMF based system just like Plone.

Re:zope 3 ? (1)

stuntpope (19736) | about 8 years ago | (#14956406)

True that CPS is still a Zope 2 CMF product, but the summary is correct - it leverages Zope 3, leverage being the key word. And I mean beyond just having Five included in the Zope core. I'm looking at the download, and they're incorporating the Zope 3 testing mechanism with functional and unit tests, plus they use Zope 3 interfaces, schemas, and some ZCML.

Their totally-Zope 3 work is announced at http://www.z3lab.org/ [z3lab.org].

Re:zope 3 ? (1)

MaoTse (624765) | about 8 years ago | (#14964848)

CPS 3.4 is a Zope 2.9 app

It is not a Zope 3 app and although it leverages Zope 3 components certainly it is not based on zope 3 Component Architecture [zope.org]

Re:zope 3 ? (1)

stuntpope (19736) | about 8 years ago | (#14967674)

Thank you for repeating me ("CPS is still a Zope 2 CMF product"). But it should be pointed out that they could have written a 2.9 app and completely avoided interfaces, schemas, zcml and any parts of 3. To be pedantic, it's really more a Five app, the bridge between 2.x and 3.x. You can continue to argue the difference between "leveraging Zope 3 components" vs "leveraging Zope 3 component architecture" if you wish, but it seems silly to me.
Check for New Comments
Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Sign up for Slashdot Newsletters
Create a Slashdot Account