Drupal Security For Admins and Coders
Drupal core provides features which enable developers and site admins to be secure without any additional work - but it also enables you to create huge gaping holes in your site's security.
So, is your Drupal site safe? Are all of your contributed modules safe?
The most important thing to keeping your site secure is for you to be knowledgeable about potential security issues in web hosting and in Drupal. This session will arm you with the knowledge necessary to keep your site protected.
About Greg Knaddison
When not out riding his bike, Greg enjoys helping publishing companies leverage Drupal to make their sites rock. Since joining the Drupal Security Team he has made it his goal to educate end-users and developers in how to Drupal safely.
Agenda:
1. Why bother?
2. What are the most common kinds of vulnerabilities that you might have in your site?
3. How Drupal protects against those (and how to spot weaknesses in a contributed module)
4. The Drupal Security Team Process
5. Q & A
Prerequisites:
No prior knowledge is necessary, but you will get more out of the session if you are familiar with Drupal and perhaps have read some code in a theme or module file before.
Goals:
You will have:
1) A better understanding of security issues in general
2) The tools to protect your site
3) Knowledge of how to find and properly report vulnerabilities in modules you use
slides from the session
In case anyone missed it, this presentation is on my company blog at Drupal Security