Even if i had a limited experience with it this doesn't surprise me, i still don't understand how big site can use or have used (list on openx site) this script to manage their own ad network.
Lots of issues with the db and with the upgrade procedure, sometimes has weird issues hard to identify and solve(i.e. things that stop working without any apparent reason)... Maybe i'm too critic, but i felt it was just another crappy php app.
As far as I know, there really isn't much out there when it comes to open-source. There is OASIS (http://oasis.sourceforge.net/), but I don't think it is in active development.
It's amazing to me that OpenX is trying to be looked at as a 'leader' in this space and they even do hosted ads, but they can't keep their servers up for a security patch release.
See my comment above - OpenX is being DDOS'ed. The upgrade didn't bring it down, though it's likely that the DDOS is intended to keep people from upgrading.
Yes, it seems that over the past 6-12 months it has been one security vulnerability after another with OpenX -- which is why I switched to Google DFP 2 weeks ago.
It's slightly more complicated than that, and you'd probably have to work in advertising to understand why.
Ad zones, campaign weighting, frequency caps, companion positioning, exclusive campaigns, delivery limitations (language, user-agent, geographic targeting, time of day, section), probability calculation, detailed statistics, and the ability to give a client a login to view their own stats. These are just a few of the features.
If all you need is a glorified image/snippet server and counter, you could probably just write one.
[+] [-] chrisbolt|15 years ago|reply
https://svn.openx.org/openx/tags/2.8/openx-2.8.6/plugins_rep...
This third party plugin is automatically installed and enabled by the installer. No admin authentication, wide open access to upload and run PHP.
More details can be found at http://www.kreativrauschen.com/blog/2010/09/09/critical-vuln... and if www/admin/plugins/videoReport/lib/tmp-upload-images/ exists, it's likely your server has been compromised.
[+] [-] johng|15 years ago|reply
[+] [-] DJN|15 years ago|reply
I designed it and it's one of my proudest pieces of work (if I may say so myself) :)
Warning: its a premium service
http://www.trafficspaces.com/tour/
[+] [-] drtse4|15 years ago|reply
Lots of issues with the db and with the upgrade procedure, sometimes has weird issues hard to identify and solve(i.e. things that stop working without any apparent reason)... Maybe i'm too critic, but i felt it was just another crappy php app.
[+] [-] troels|15 years ago|reply
[+] [-] bobds|15 years ago|reply
You exploit a couple big OpenX installs, put some Flash ads in there and infect a whole lot of users.
On a sidenote, are there any less complex, preferably open-source, alternatives to OpenX?
[+] [-] robotkad|15 years ago|reply
Personally, I'll be moving a couple of openx installs to Google DFP (http://www.google.com/dfp/info/sb/index.html) in the next few days. I've heard some good things about AdButler (http://www.adbutler.com/) but I have yet to use it myself.
[+] [-] johng|15 years ago|reply
[+] [-] JoelPM|15 years ago|reply
[+] [-] drtse4|15 years ago|reply
[+] [-] sucuri2|15 years ago|reply
[+] [-] JoelPM|15 years ago|reply
[+] [-] chopsueyar|15 years ago|reply
[+] [-] bobf|15 years ago|reply
[+] [-] chopsueyar|15 years ago|reply
Is it more than a glorified image/snippet server and counter?
[+] [-] chrisbolt|15 years ago|reply
Ad zones, campaign weighting, frequency caps, companion positioning, exclusive campaigns, delivery limitations (language, user-agent, geographic targeting, time of day, section), probability calculation, detailed statistics, and the ability to give a client a login to view their own stats. These are just a few of the features.
If all you need is a glorified image/snippet server and counter, you could probably just write one.
[+] [-] amalcon|15 years ago|reply
[+] [-] sachinag|15 years ago|reply
[+] [-] johng|15 years ago|reply