||This article has been nominated to be checked for its neutrality. (July 2015)|
|Developer(s)||267 Worldwide Current Contributors|
|Stable release||5.0.4 / 7 April 2016|
|Type||Content management system|
|License||GNU General Public License|
Plone is a free and open source content management system built on top of the Zope application server. Plone is positioned as an "Enterprise CMS" and is most commonly used for intranets and as part of the web presence of large organizations. High-profile public sector users include the U.S. Federal Bureau of Investigation, Brazilian Government, United Nations, City of Bern (Switzerland), New South Wales Government (Australia), and European Environment Agency. Plone's proponents cite its security track record and its accessibility as reasons to choose Plone.
Plone has a long tradition of development happening in so-called "sprints", in-person meetings of developers over the course of several days, the first having been held in 2003 and nine taking place in 2014. The largest sprint of the year is the sprint immediately following the annual conference. Certain other sprints are considered strategic so are funded directly by the Plone Foundation, although very few attendees are sponsored directly. The Plone Foundation also holds and enforces all copyrights and trademarks in Plone, and is assisted by legal counsel from the Software Freedom Law Center.
The Plone project began in 1999 by Alexander Limi, Alan Runyan, and Vidar Andersen. It was made as a usability layer on top of the Zope Content Management Framework. The first version was released in 2001. The project quickly grew into a community, receiving plenty of new add-on products from its users. The increase in community led to the creation of the annual Plone conference in 2003, which is still running today. In addition, "sprints" are held, where groups of developers meet to work on Plone, ranging from a couple of days to a week. In March 2004, Plone 2.0 was released. This release brought more customizable features to Plone, and enhanced the add-on functions. In May 2004, the Plone Foundation was created for the development, marketing, and protection of Plone. The Foundation has ownership rights over the Plone codebase, trademarks, and domain names. Even though the foundation was set up to protect ownership rights, Plone remains open source. On March 12, 2007, Plone 3 was released. This new release brought inline editing, an upgraded visual editor, and strengthened security, among many other enhancements. Plone 4 was released in September 2010. Up to September 2007, there have been over 200 developers contributing to Plone's code. Plone won two Packt Open Source CMS Awards.
|Version||Release date||Development time (days)||Notes and significant changes|
|0.1||October 4, 2001||Initial public release|
|1.0||February 6, 2003||490||First stable release|
|2.0||March 23, 2004||411|
|2.1||September 6, 2005||532|
|2.5||September 19, 2006||378|
|3.0||August 21, 2007||336|
|3.1||May 2, 2008||255|
|3.2||February 7, 2009||281|
|3.3||August 19, 2009||193|
|4.0||September 1, 2010||378||Infrastructure improvements increasing performance and reducing resource use, new base theme, more efficient blob storage, overlays, fit and polish.|
|4.1||August 8, 2011||341||Configuration registry, improved commenting system, more versatile caching, more detailed security roles.|
|4.2||July 5, 2012||332||Diazo theming system, HTML5, Python 2.7, improved collections, improved search.|
|4.3||April 13, 2013||282||Dexterity Content Type development system, Kupu removal, KSS removed, Password API, Improved Syndication, NewsML, TTW Theme Editor|
|5.0||September 28, 2015||898||Simpler, faster Dexterity as the new default content type framework. Theming is made easier with Diazo. The Chameleon rendering engine improves response times by 15 to 30 percent. A modern series of form widgets have been created with usability and accessibility in mind.|
Plone runs on the Zope application server, which is written in Python. Plone by default stores all information in Zope's built-in transactional object database (ZODB). It comes with installers for Windows, Mac OS X, and Linux, along with other operating systems. New updates are released regularly on Plone's website. Plone is available in over 35 languages. Since version 3.0, it claims conformance to (the now outdated) WCAG 1.0 AA and U.S. section 508, which allows people with disabilities to access and use Plone. An update to make Plone conform to WCAG 2.0 has been planned. A major part of Plone is its use of skins and themes. When working with Plone, templates can be used to customize a website's look. These templates are written with Cascading Style Sheets. In addition, Plone comes with a user management system called Pluggable Authentication Service (PAS). Introduced in Plone 2.5, PAS is used to properly sort actions from different users to their respective folders or accounts. PAS is also used to search for users and groups in Plone. Most importantly, PAS covers the security involved for users, requiring authentication in order to log in to Plone. This gives users an increase in both security and organization with their content. A large part of Plone's changes have come from its community. Since Plone is open source, the members of the Plone community regularly make alterations or add-ons to Plone's interface, and make these changes available to the rest of the community via Plone's website.
The community supports and distributes thousands of add-ons via company websites but mostly through PYPI and www.plone.org. There are currently 2149 packages available via PyPI for customizing Plone.
Since its release, many of Plone's updates and add-ons have come from its community. Events called Plone "sprints" consist of members of the community coming together for a week and helping improve Plone. The Plone conference is also attended and supported by the members of the Plone community. In addition, Plone has an active IRC channel to give support to users who have questions or concerns. Up through 2007, there have been over one million downloads of Plone. Plone's development team has also been ranked in the top 2% of the largest open source communities.
Strengths and weaknesses
A 2007 comparison of CMSes rated Plone highly in a number of categories (standards conformance, access control, internationalization, aggregation, user-generated content, micro-applications, active user groups and value). However, as most of the major CMSes, including Plone, Drupal, WordPress and Joomla, have undergone major development since then, only limited value can be drawn from this comparison. Plone is available on many different operating systems, due to its use of platform-independent underlying technologies such as Python and Zope. Plone's Web-based administrative interface is optimized for standards, allowing it to work with most common web browsers, and uses additional accessibility standards to help users who have disabilities. All of Plone's features are customizable, and free add-ons are available from the Plone website.
Focus on security
Mitre is a not-for-profit corporation which hosts the Common Vulnerabilities and Exposures (CVE) Database. The CVE database provides a worldwide reporting mechanism for developers and the industry and is a source feed into the U.S. National Vulnerability Database (NVD). According to Mitre, as of 2013-05-29, Plone has the lowest number of reported lifetime and year to date vulnerabilities when compared to other popular Content Management Systems. This security record has led to widespread adoption of Plone by government and non-governmental organizations, including the FBI.
The following table compares the number of CVEs as reported by Mitre. It should be noted that logged CVEs take into account vulnerabilities exposed in the core product as well as the modules of the software, of which, the included modules may be provided by 3rd party vendors and not the primary software provider.
- Content management system
- Diazo (software)
- List of content management systems
- List of applications with iCalendar support
- "Gov 2.0 guide to Plone". Govfresh.com. 2011-03-11. Retrieved 2012-10-18.
- "Is Plone Really More Secure Than Drupal and Joomla?". Real Story Group. 2013-02-11. Retrieved 2015-01-02.
- "Plone - The Open Source Enterprise CMS". Six Feet Up. Retrieved 2015-01-02.
- "All sprints". Plone. Retrieved 2015-01-02.
- "Bring Your Talent and Passion to a Sprint. Better Yet, Organize One!". Plone. 2013-04-02. Retrieved 2015-01-02.
- "Software Freedom Law Center Adds Plone Foundation as Newest Client". Software Freedom Law Center. 2005-07-13. Retrieved 2015-01-02.
- "Plone Foundation FAQs — Plone CMS: Open Source Content Management". Plone.org. 2009-01-03. Retrieved 2012-10-18.
- "Plone 3.0 released! — Plone CMS: Open Source Content Management". Plone.org. 2007-08-21. Retrieved 2012-10-18.
- "Plone 4 CMS Unveiled: Advancing Power, Performance & User Experience — Plone CMS:- Open Source Content Management". Plone.org. Retrieved 2012-10-18.
- "Open Source Awards Previous Winners | Packt Publishing". Packtpub.com. Retrieved 2012-10-18.
- Plone: Features in Plone 3.
- Alex Limi: Accessibility Compliant.
- Plone (features in Plone 4.0).
- Plone Foundation: Meeting of the Board of Directors: Minutes of May 17th, 2012.
- Plone Foundation: Minutes for February 21, 2013.
- "The Definitive Guide to Plone - First Edition - 12 December 2006" (PDF). Plone.org. Retrieved 2012-10-18.
- "What does Plone mean? How is it pronounced? — Plone CMS: Open Source Content Management". Plone.org. Retrieved 2012-10-18.
- Ohloh. "Plone : Project Summary". Ohloh. Retrieved 2012-10-18.
- "Plone documentation". Retrieved 2015-01-02.
- "Kinetic Style Sheets". Retrieved 2015-02-01.
- "Browse : Python Package Index". Pypi.python.org. Retrieved 2012-10-18.
- "Feature Article | Real Story Group". Cmswatch.com. 2007-06-11. Retrieved 2012-10-18.
- "Mitre FAQ". Mitre. 2015-12-10. Retrieved 2016-01-17.
- "Mitre CVE Database for Plone". Mitre. Retrieved 2013-05-29.
- "Mitre CVE Database for Joomla". Mitre. Retrieved 2013-05-29.
- "Mitre CVE Database for Wordpress". Mitre. Retrieved 2013-05-29.
- "Mitre CVE Database for Drupal". Mitre. Retrieved 2013-05-29.
|Wikimedia Commons has media related to Plone.|