Thanks Andrew -

I would definitely put more emphasis on security in D7.0.4. Dolphin has been improved a great deal no doubts about that. But imagine driving a Porche with a Toyota engine. In other words, Dolphin is such a sophisticated application, but when my site gets bombarded with SPAM, all of sudden it becomes a hub for advertisements & SPAM and it becomes irrelevant as result. At times, I just want to shut it down because the SPAM I get is so overwhelming.

One security hole I see more have yet to figure out, at times my members receive personal emails from females telling them that they like their profile and they want to share their pictures with them. In fact, I get those emails myself from Boonex.com and from my Dolphin site. What I find very troubling, is my hosting company allows only 500 emails to be sent out from my account, but how is it possible a personal email gets sent out to all of my 10,000 members at once? How is this person gets access to ALL of my emails in my database? I’ve been getting lots of complains from my members about these type of emails, and I have yet to figure out how to stop that..

Lastly, I would look into implementing some type of security against DDoS. Distributed Denial of Service will not only bring the site down, but it will bring the whole server down to its knees and at times the whole network. I am not sure if this type of attack can be implemented around the Application or within the Server, but thought to mention it because I’ve seen how effective this type of attack is.

Keep up the good work. D7.0.3 is a Porche indeed :)

Regards,
@AJ