Drupal - Melbourne cryptoparty
Click here to load reader
-
Upload
chris-chinchilla -
Category
Technology
-
view
182 -
download
2
description
Transcript of Drupal - Melbourne cryptoparty
Drupal
Cryptoparty, Melbourne 27th Oct
@chrischinch
Overview
‘Drupal’ is a Trademark
Released under GPL license, as are all modules and themes
Drupal distributions
A healthy consultant / developer ecosystem
Acquia and commercialisation
You’re in good company…
Why use an Open Source CMS?
Freedom
After a bit of work
Especially with Drupal
Data in
CSV, XML, RSS, JSON, KML, OPML, RDF, SQL, SSO, Oauth, OpenID, Social Logins, phpBB, Joomla, Wordpress, LiveJournal…
And more!
Data Out…
CSV, RSS, XML, JSON, TXT, Serialize, Node Code
MORE
Security process
Open source
Security Team
Most vulnerabilities, “Bad practice”
drupalsecurityreport.org
Security Features
Passwords
Private keys
Cookies / Sessions
Passwords never emailed
Cross-site forgery / Scripting
Data Sanitisation
Database Abstraction Layer
Securing
Disabling PHP Filters
Check HTML Filters
Captcha / Mollom
Status Report
Error Logs
Privacy
Basic user tracking by default
Many other initial flaws slowly resolved
Public & private fields
Highly configurable permissions
Cookies / EU compliance
More?
Drupal Melbourne
www.meetup.com/drupalmelbourne
Australia’s first ‘official’ Drupal Con
Sydney, 6th Feb 2013