Web, Forum and Ecommerce package?

SoLow-Cars

Free Member
Sep 12, 2016
1
0
Hi guys/girls,

Im new here and was hoping to get some advice/help..

I have been going round in circles with this now and yes, it's probably me over thinking and overlooking things but i'm at the point now where my head is totally cabbaged with it all.

I have:
- A domain name with GoDaddy
- A forum with Forumotion
- An ecommerce store with Shopify

Now getting the 3 to work hand in hand has totally blagged my head, so i was wondering if anyone:
A) Knows of a package that combines the 3 (web, forum and ecommerce hosting).
or
B) Could tell me my best option to get a website with a forum and shop on it.

I don't mind starting from scratch again but would like to avoid wordpress etc. if possible as my coding skills are not too great and security wise, it wouldn't be the greatest.

Thanks in advance for any answers.
 

Clinton

Free Member
  • Business Listing
    Jan 17, 2010
    5,748
    1
    3,068
    ukbusinessbrokers.com
    Now getting the 3 to work hand in hand has totally blagged my head,
    What do you mean "work hand in hand"?

    The registrar (GoDaddy) simply maintains your domain registration and allows you to set "name servers" that point people to your site.

    When they arrive at your site people see your ecommerce store.

    The store has nothing to do with GoDaddy and doesn't work "hand in hand" with the registrar.

    The forum you mention is one of those places where you create a forum at their domain and they give you a sub-domain in the form of yourname.theirdomainname.com. It is not connected with either GoDaddy or the Shopify store as it is unrelated to your domain name or your hosting.

    Your car (site) doesn't work "hand in hand" with the local street signs (GoDaddy) nor with your neighbour's car (third party hosted forum).
     
    Upvote 0

    fisicx

    Moderator
    Sep 12, 2006
    46,920
    8
    15,505
    Aldershot
    www.aerin.co.uk
    A) Knows of a package that combines the 3 (web, forum and ecommerce hosting).
    or
    B) Could tell me my best option to get a website with a forum and shop on it.
    Pretty much any CMS will do this. Wordpress is probably the easiest to set up but as you don't want to do this you need to look at the alternatives. Whichever one you choose you will need to get your hands dirty as none of them will do what you want out the box. It may be better to get someone who knows what they are doing to give you a hand.

    And wordpress is no less secure than any other CMS. A properly configured Wordpress site can be locked right down making it very difficult to hack.
     
    Upvote 0
    Wordpress OK, my preference is Joomla/Kunena/Virtuemart
     
    Upvote 0

    webhostuk

    Free Member
  • Jul 26, 2009
    1,448
    174
    UK
    www.webhostuk.co.uk
    Or go for any Cpanel hosting service .. you get all the Hosting related services like forum hosting and Ecommerce Hosting at one place.. Now a days with Cpanel and softaculousyou get forum scripts like wordpress forum, phpbb forum Simple machine and many more free forum software. For Ecommerce you can use scripts like woocommerce, magento, zen cart. etc. So if you wish to keep things at one place ,just need todecide your hosting provider you can even transfer the domain to them and get your domain, forum and ecommerce store hosted at one single point.
     
    Upvote 0

    antropy

    Business Member
  • Business Listing
    Aug 2, 2010
    5,324
    1,104
    West Sussex, UK
    www.antropy.co.uk
    Wordpress is probably the easiest to set up but as you don't want to do this you need to look at the alternatives.
    WordPress is absolutely shocking in terms of code and ease of use, I have no idea why "developers" still recommend it, especially for an ecommerce shop! Instead look at a platform that has been designed to be a shop such as OpenCart, PrestaShop or even Magento (if you have a big budget).

    And wordpress is no less secure than any other CMS.
    Again, absolute nonsense. Because WordPress is so popular for some unknown reason (probably because most people don't know any better) it is a massive target and constantly suffers from hacks and exploits.
     
    Upvote 0

    Black Bird

    Free Member
    Sep 18, 2016
    15
    1
    WordPress is absolutely shocking in terms of code and ease of use, I have no idea why "developers" still recommend it, especially for an ecommerce shop! Instead look at a platform that has been designed to be a shop such as OpenCart, PrestaShop or even Magento (if you have a big budget).

    You have literally hurt my feelings! Both your arguments are indeed nonsense. Any individual with any online security credentials knows that the attitude towards any online system or platform should be as if the system has already been hacked. So part of you protecting your system is continuously hacking it to hack proof it, which comes for free with WordPress. Therefore, the system is as safe as YOU make it to be. Now because you haven't heard of any new exploits in OpenCart and PrestaShop, does NOT mean they don't currently have any.

    In fact, because they have a smaller user and contributor base, they are more likely to have exploits that are left undiscovered. The exploits you hear about WordPress are >98% of the time are in the plug-ins which are NOT part of WordPress itself!

    Believe of not, most hacks and exploits that happen around the world have nothing to do with any code written but rather that users of the system who give hackers access without realising (Phishing, MITM, etc.). And most code related exploits are not dangerous or would require a user with admin privileges to execute to escalate the hacker's privileges, which brings us back to naive system administrators.

    Now the easiest thing to do to protect WordPress is hiding the fact you are using it, because to protect yourself you need to think like a hacker. If this hacker was to use an exploit in a plug-in such as Slider Revolution he will be looking for websites that have WordPress with that plug-in installed, meaning he/she will go to Google and use a Google Dork to find such website. Now the way Google Dorks work is by looking for websites with footprints that fit the profile. So, if you can hide these footprints, even if you had a vulnerable plug-in installed, no one can find that out. Having Cloudflare up front will stop most DDoS attacks and stop IP and Port scanning which can show the hackers vulnerabilities in the web server it self. Also having a limit on the number of login tries can stop any potential brute-force attacks.

    That covers most corners, now whether you're using Wordpress or Magento you still need to do all this if you want your site secure, so tell me which platform can help you accomplish that as easy as WordPress??
     
    Upvote 0

    antropy

    Business Member
  • Business Listing
    Aug 2, 2010
    5,324
    1,104
    West Sussex, UK
    www.antropy.co.uk
    Both your arguments are indeed nonsense.
    Quite a statement, but then you haven't given a single valid argument to explain why.

    Any individual with any online security credentials knows that the attitude towards any online system or platform should be as if the system has already been hacked. So part of you protecting your system is continuously hacking it to hack proof it, which comes for free with WordPress.
    So you're saying WordPress is more secure because it's constantly being hacked? If you say so.

    Therefore, the system is as safe as YOU make it to be.
    So you're saying WordPress is secure ... if you spend a load of time locking it down.

    Now because you haven't heard of any new exploits in OpenCart and PrestaShop, does NOT mean they don't currently have any.
    Anyone who knows anything about software development will tell you there's no such thing as "unhackable" software, but it is a fact that WordPress is a target and gets hacked far more frequently than others.

    In fact, because they have a smaller user and contributor base, they are more likely to have exploits that are left undiscovered.
    I agree - undiscovered by developers and by hackers alike, and therefore more secure.

    The exploits you hear about WordPress are >98% of the time are in the plug-ins which are NOT part of WordPress itself!
    Perhaps, but that doesn't make it any less damaging when your site is hacked.

    Believe of not, most hacks and exploits that happen around the world have nothing to do with any code written but rather that users of the system who give hackers access without realising (Phishing, MITM, etc.).
    Citation needed.

    And most code related exploits are not dangerous or would require a user with admin privileges to execute to escalate the hacker's privileges, which brings us back to naive system administrators.
    I wouldn't really call it an exploit if it's not dangerous and doesn't allow the hacker to do any damage.

    If this hacker was to use an exploit in a plug-in such as Slider Revolution he will be looking for websites that have WordPress with that plug-in installed, meaning he/she will go to Google and use a Google Dork to find such website. Now the way Google Dorks work is by looking for websites with footprints that fit the profile. So, if you can hide these footprints, even if you had a vulnerable plug-in installed, no one can find that out.
    So for every plugin you install you have to change it so it appears you're not using it? Sounds like a lot of expensive developer work.

    Having Cloudflare up front will stop most DDoS attacks and stop IP and Port scanning which can show the hackers vulnerabilities in the web server it self. Also having a limit on the number of login tries can stop any potential brute-force attacks.
    True. But you can use that on any site, WordPress or not.

    which platform can help you accomplish that as easy as WordPress??
    Back to my first point - if you want a blog, use blogging software like WordPress. If you want a CMS site, use CMS software like Concrete5. If you want a forum, use forum software like PHPBB. If you want an ecommerce site, use ecommerce software like OpenCart or Prestashop. Quite simple logic really.
     
    Upvote 0

    fisicx

    Moderator
    Sep 12, 2006
    46,920
    8
    15,505
    Aldershot
    www.aerin.co.uk
    WordPress is absolutely shocking in terms of code and ease of use, I have no idea why "developers" still recommend it, especially for an ecommerce shop!
    If all you want is a shop then that's fine. But the OP wanted an all in one solution.
     
    Upvote 0

    antropy

    Business Member
  • Business Listing
    Aug 2, 2010
    5,324
    1,104
    West Sussex, UK
    www.antropy.co.uk
    If all you want is a shop then that's fine. But the OP wanted an all in one solution.
    That's what the OP *thinks* they want, but if they want a forum as well as a blog and an ecommerce shop, they might be better off heeding the Unix Philosophy and using separate bits of software that are specific to each task.

    We will often use WordPress for a blog, OpenCart for the shop and PHPBB for the forum on a site. We can skin them to look almost identical so you appear to be on the same site:

    OpenCart: http://www.getlaidbeds.co.uk/
    WordPress: http://www.getlaidbeds.co.uk/blog/

    More info here:
    http://www.antropy.co.uk/blog/integrating-opencart-with-other-software/
     
    • Like
    Reactions: fisicx
    Upvote 0

    fisicx

    Moderator
    Sep 12, 2006
    46,920
    8
    15,505
    Aldershot
    www.aerin.co.uk
    I totally agree with you and that's how I would do it as well. But I don't think the OP has really thought things through which is why they are floundering.
     
    Upvote 0

    antropy

    Business Member
  • Business Listing
    Aug 2, 2010
    5,324
    1,104
    West Sussex, UK
    www.antropy.co.uk
    I totally agree with you and that's how I would do it as well. But I don't think the OP has really thought things through which is why they are floundering.
    Yep exactly. I mean it's unlikely that any piece of software, CMS, ecommerce site, blog platform would have a plugin that's a fully featured forum because a forum in itself is complex. So if you're looking to add a forum it makes sense to add it with PHPBB or another open source forum project.

    If you're looking for an ecommerce site and a blog, the best way is probably with OpenCart and WordPress, but I would say there are 2 exceptions to that:

    1. If you want mostly an ecommerce site with a really simple blog, then it can be easier and cheaper to use OpenCart with a blog plugin.

    2. If you want a site that's very blog content heavy and sells a small number of products off the back of the blog traffic, it could make sense to use WordPress with WooCommerce.

    But in general, I think it's best to use software for what it's designed for, unless there's a very good reason to do otherwise. Too many "developers" think WordPress is the answer to everything, when it's really not great in many ways.

    It doesn't help that an otherwise great publication like Web Designer Magazine seems to bang on about how great WordPress is all day long and doesn't ever seem to feature other platforms.

    There is an absolute wealth of open source software out there, and the first part of any project, in my opinion, should be research in to the most appropriate platform to use, unless you enjoy shoehorning square pegs in to round holes all day long of course.
     
    Last edited:
    Upvote 0

    Black Bird

    Free Member
    Sep 18, 2016
    15
    1
    Quite a statement, but then you haven't given a single valid argument to explain why.
    I wasn't sure I needed to guide you as well as inform you through the reply.
    So you're saying WordPress is more secure because it's constantly being hacked? If you say so.
    I am actually saying that, or do you prefer exploits to be their but left uncovered?
    So you're saying WordPress is secure ... if you spend a load of time locking it down.
    Once again you choose to understand things in a unified manner. Hint: My comment was includes you're other platforms too! E.g. OpenCart will be a piece of cake to hack if the web server is vulnerable. I am not sure on what level of PCI Compliance you had to fulfil previously on your projects but I would assume you didn't have to touch on all aspects of security.
    Anyone who knows anything about software development will tell you there's no such thing as "unhackable" software, but it is a fact that WordPress is a target and gets hacked far more frequently than others.
    I agree, there is no such thing as unhackable software, but I rather be informed if I have an exploit in my system rather than it popping in my face few years down the line.
    I agree - undiscovered by developers and by hackers alike, and therefore more secure.
    Back to nonsense, you do realise there are people out there who's job is to hack websites for profit and they are smart enough not to use it excessively, which means they won't be giving away their exploits until a good platform veteran finds the exploit and reports it! Therefore, any of your platforms is more likely to be sitting on a major exploit being used by a few hackers with little chance of it being discovered because of the small contributor base.
    Perhaps, but that doesn't make it any less damaging when your site is hacked.
    True, same thing stands true to the rest of platforms. So due diligence is needed.

    Citation needed.
    This should shed some light:
    I can't post links yet, so search for "IBM - Data breach statistics - United Kingdom" The infographic should confirm my allegations.

    I wouldn't really call it an exploit if it's not dangerous and doesn't allow the hacker to do any damage.
    True, but again what is damaging? Just monetary theft? Defaced website? What about stolen patient information from a dentist booking system? Perhaps something to consider, it all depends on the application.
    So for every plugin you install you have to change it so it appears you're not using it? Sounds like a lot of expensive developer work.
    Once again, you sound like you have rarely used WordPress. One plugin can hide everything for you! No developers, no custom work, one cheap plugin. I would suggest you get yourself accustomed with it before giving advice!
    True. But you can use that on any site, WordPress or not.
    Indeed. It is as important to WordPress as other platforms.
    Back to my first point - if you want a blog, use blogging software like WordPress. If you want a CMS site, use CMS software like Concrete5. If you want a forum, use forum software like PHPBB. If you want an ecommerce site, use ecommerce software like OpenCart or Prestashop. Quite simple logic really.
    Once again I disagree, because sadly as much as I would want to use one thing for everything it doesn't always fulfil my goals. Not all standalone eCommerce solutions have the options needed by certain applications. The same applies to forum software.
    Things can get more messy when you would like an eCommerce platform that integrates with a forum where a single login would be used. You would endup having to create custom integrations inbetween, which is highly likely to not be as good as having many plugins which were made to connect to the same skeleton (WordPress).
     
    Upvote 0

    antropy

    Business Member
  • Business Listing
    Aug 2, 2010
    5,324
    1,104
    West Sussex, UK
    www.antropy.co.uk
    I wasn't sure I needed to guide you as well as inform you through the reply.
    If you're saying I'm talking nonsense then it would make sense to point out why, if you wish to be taken seriously.

    I am actually saying that, or do you prefer exploits to be their but left uncovered?
    Given that all software has them to some extent, the best case is that no one knows them. The worst case is that only hackers know them. The middle ground is that everyone knows them, which is WordPress.

    Once again you choose to understand things in a unified manner. Hint: My comment was includes you're other platforms too! E.g. OpenCart will be a piece of cake to hack if the web server is vulnerable. I am not sure on what level of PCI Compliance you had to fulfil previously on your projects but I would assume you didn't have to touch on all aspects of security.
    I've been in this industry for 12 years, I can assure you I've come across PCI Compliance but bringing the web server into this discussion is totally irrelevant seeing as we are discussing software only here.

    I agree, there is no such thing as unhackable software, but I rather be informed if I have an exploit in my system rather than it popping in my face few years down the line.
    Of course it's better to know if there is one but I don't accept your point that because saying that WordPress exploits are known by everyone so it's more secure doesn't make sense. It takes time to patch holes and release updates and many users can't/won't/don't update regularly.

    Back to nonsense, you do realise there are people out there who's job is to hack websites for profit and they are smart enough not to use it excessively, which means they won't be giving away their exploits until a good platform veteran finds the exploit and reports it! Therefore, any of your platforms is more likely to be sitting on a major exploit being used by a few hackers with little chance of it being discovered because of the small contributor base.
    Obviously there are professional hackers, but I don't accept your point that any platform other than WordPress has such a small contributor base that exploits aren't found. I would say that because they are open source with many contributors that exploits are found and fixed. The difference is that because WordPress is so popular, hackers go to more effort to hack it. It's the same with Windows/Mac/Linux - the reason there are less viruses for the latter two is because less people use them, they are not inherently more secure.

    This should shed some light:
    I can't post links yet, so search for "IBM - Data breach statistics - United Kingdom" The infographic should confirm my allegations.
    Perhaps in big corporate companies social engineering plays a part but in my experience of smaller companies, it's usually something like a weak password being used rather than an actual exploit.

    True, but again what is damaging? Just monetary theft? Defaced website? What about stolen patient information from a dentist booking system? Perhaps something to consider, it all depends on the application.
    All of the above count as damaging.

    Once again, you sound like you have rarely used WordPress. One plugin can hide everything for you! No developers, no custom work, one cheap plugin. I would suggest you get yourself accustomed with it before giving advice!
    We've built many WordPress sites, unfortunately. But you sound like you have rarely used anything else.

    Once again I disagree, because sadly as much as I would want to use one thing for everything it doesn't always fulfil my goals.
    But that's exactly what I'm saying - you can't use one thing (WordPress) for everything.

    Things can get more messy when you would like an eCommerce platform that integrates with a forum where a single login would be used. You would endup having to create custom integrations inbetween, which is highly likely to not be as good as having many plugins which were made to connect to the same skeleton (WordPress).
    I can see the need for this but creating a user account and keeping it updated programmatically isn't that difficult. That way you can use forum software for a forum, and ecommerce software for ecommerce. It might be that you can get around this single sign-on problem with something like OpenID or just allowing logins with Facebook / Google / Twitter etc.
     
    Upvote 0

    Black Bird

    Free Member
    Sep 18, 2016
    15
    1
    @antropy I have a feeling this will keep going back and forth. The point I was trying to make is you're being a little bit too harsh over your view to WordPress's security. I am a certified ethical hacker and part of my services is hacking websites for living working with Merchant Levels 4 and up to 2 where you need a little bit more than Self assessment to be PCI compliant. I have seen all sorts of cases and sadly irrelevant of the platform the user was and still is the weakest link. Either way, good luck with your ventures and wish you all the best.
     
    Upvote 0

    antropy

    Business Member
  • Business Listing
    Aug 2, 2010
    5,324
    1,104
    West Sussex, UK
    www.antropy.co.uk
    @antropy I have a feeling this will keep going back and forth.
    Well if someone says I'm talking nonsense in my professional field, then I'd at least like to know if there's any substance to these claims, and explain my point of view if necessary.

    The point I was trying to make is you're being a little bit too harsh over your view to WordPress's security.
    Actually, my point is that WordPress is not always the right tool for every web project from a technical perspective. Even if we ignore any security concerns.

    I am a certified ethical hacker and part of my services is hacking websites for living working with Merchant Levels 4 and up to 2 where you need a little bit more than Self assessment to be PCI compliant.
    So you're not a developer?

    I have seen all sorts of cases and sadly irrelevant of the platform the user was and still is the weakest link.
    Yes, as I said, the most common security issue I've seen is weak passwords.

    Either way, good luck with your ventures and wish you all the best.
    Same to you, and please don't take my comments the wrong way, I just get frustrated when people recommend WordPress when they're not aware that different types of projects require different types of software and WordPress is often not the right tool for the job.
     
    Upvote 0

    Black Bird

    Free Member
    Sep 18, 2016
    15
    1
    WordPress is absolutely shocking in terms of code and ease of use, I have no idea why "developers" still recommend it, especially for an ecommerce shop! Instead look at a platform that has been designed to be a shop such as OpenCart, PrestaShop or even Magento (if you have a big budget).

    Again, absolute nonsense. Because WordPress is so popular for some unknown reason (probably because most people don't know any better) it is a massive target and constantly suffers from hacks and exploits.
    Your point was regarding WordPress shocking Code and Security which I thought was nonsense. I didn't say its the one solution to everything (for which I totally agree), all I was saying is WordPress Security and Code is what you can make out of it as a system administrator, which applies to other platforms too.

    Either way, I don't think you can be a penetration tester without being able to programme. So yes I am a developer too. I design and develop websites nowadays because sadly small businesses don't realise they need us yet. I mainly use WordPress and Magento depending on the project.

    I hope you wouldn't take my comments the wrong way either, I contribute to WordPress code on my free time and I think it is wonderful perhaps I need to remind my self it is not my baby.

    I also think we owe the OP an apology for hijacking his/her thread.
     
    Upvote 0

    antropy

    Business Member
  • Business Listing
    Aug 2, 2010
    5,324
    1,104
    West Sussex, UK
    www.antropy.co.uk
    Your point was regarding WordPress shocking Code and Security which I thought was nonsense.
    A controversial point of view indeed, but one I stand by.

    I didn't say its the one solution to everything (for which I totally agree)
    Glad we agree.

    I design and develop websites nowadays because sadly small businesses don't realise they need us yet. I mainly use WordPress and Magento depending on the project.
    What made you decide to use WordPress and Magento?

    I contribute to WordPress code on my free time and I think it is wonderful perhaps I need to remind my self it is not my baby.
    Always good to contribute to open source projects.

    I also think we owe the OP an apology for hijacking his/her thread.
    I think we were fairly on topic to be honest - they were asking for an all-in-one solution and I was explaining why it might be better to go with separate pieces of software.
     
    Upvote 0

    pickaweb

    Free Member
    Oct 3, 2007
    594
    41
    52
    UK
    It depends on the type of functionality that you need.
    You could have got all services under one same provider.
    Most hosting services will come with presintalled tools such as ecommerce applications such as PrestaShop, blogs such as WordPress.

    t should be quite straight forward to just install any of these applications via your web hosting control panel.
    If you choose a company that offer live chat support you can ask them any time fr help if you get stuck when trying to integrate everything.

    Hope it helps.
     
    Upvote 0

    Yeongwonhi

    Free Member
    Oct 13, 2016
    39
    3
    While it is true and inevitable that hacks and exploits are all over, there is nothing we can really do about it as it happens in each and every platform. No matter if you choose the safest one, or those which we rarely hear are getting hacked, they are all subject for it.

    Now, I am not aware of any platform which can cater all three you are looking for, at the top of my head. I get it though, it would be a lot easier to have a go-to-place where everything you need is in there.

    However it seems we have to resort to other options. With Wordpress, the possibilities - it's convenient, it is user-friendly, and in case you would need a further modification on it, tutorials are everywhere. Moreover, it's free.

    However, for your store itself, I'd probably suggest Magento.

    Good luck on this though! Would love to follow through to see if anyone can suggest anything all-in-one. That would be interesting.
     
    Upvote 0

    Latest Articles

    Join UK Business Forums for free business advice