Drupal Security For Coders and Themers

Abstract: 
Security: you know you should care. Come and learn how to use Drupal's API properly to protect your site from the most common weaknesses.
Room: 
Evergreen A
Presentation Date: 
Sat, 2009-06-27 17:00

Once again we have a fun presentation about security. Will we get to reveal any security holes this summer? Time will tell.

This year will focus exclusively on developers and themers (at least themers who write theme templates and preprocess hooks).

  • Review of the most common vulnerabilities
  • Demonstration of how Drupal's API helps protect you
  • Advice on what to do if you find a vulnerability or are contacted by the security team

Greg will have a few copies of his newly published book Cracking Drupal to give away.

Pre-requisites: 
Some experience writing code or modifying template files.

Comments

Comment by page1solutions.... posted Tue, 2009-06-16 09:52

Drupal is powerful- it gives

Drupal is powerful- it gives you the power to mess up your site if you don't know what you're doing. I feel like that statement applies to me less and less each day. Still I'd like to know how to read more odd or cryptic watchdog entries and inspect other system logs to spot glaring security issues.

Comment by attheshow posted Mon, 2009-06-29 15:43

Just posted podcast version

Just posted podcast version of this at:

http://www.archive.org/details/Security-GregKnaddison-Drupalcolorado

Comment by greggles posted Tue, 2009-06-30 09:30

And here's the slides:

And here's the slides:

In conjunction with

Ubercamp

Platinum Sponsor

Gold Sponsor

User login

RSS

rss news
rss sessions
rss attendees
rss all