We are highly focused on internet and server security, and after attending a recent industry seminar recognize the need to be even more so to protect our assets and our clients assets in the ongoing war against cyber attacks.

I am interested in knowing what product has been used for the CommitCRM web interface, a third party product, or something CommitCRM has developed internally, and

what testing, patching updating is done (if any, currently) regarding the vunerablity of this software and the potential risk of it being exploited with buffer overflows, DDOS attack, injection attacks and the like?

Hi racassel, for the very same reasons you posted this question (security!) we prefer not to answer it here. Please email us and we will discuss this further with you.

Thanks.

When I asked this same question last year, I was told simply "It is very secure".

What has changed?

Nothing actually. We just do not reveal any related information about security in the forums.

Thanks.