Skip to main content

Cracking Drupal: A Drop in the Bucket

Cracking Drupal: A Drop in the Bucket

Greg Knaddison

ISBN: 978-1-118-08071-9

Mar 2011

240 pages

Select type: E-Book

$26.99

Description

The first book to reveal the vulnerabilities and security issues that exist in the sites that have been built with Drupal?and how to prevent them from continuing Drupal is an open source framework and content management system that allows users to create and organize content, customize presentation, automate tasks, and manage site visitors and contributors. Authored by a Drupal expert, this is the first book to reveal the vulnerabilities and security issues that exist in the sites that have been built with Drupal?and how to prevent them from continuing. The main goal of this guide is to explain how to write code that avoids an attack in the Drupal environment, while also addressing how to proceed if vulnerability has been spotted and then regain control of security.
1. That Horrible Sinking Feeling.

2. Security Principles and Vulnerabilities Outside Drupal.

3. Protecting Your Site with Configuration.

4. Drupal's User and Permissions System.

5. Dangerous Input, Cleaning Output.

6. Safety in the Theme.

7. Drupal Access System.

8. Automated Security Testing.Weaknesses in the Wild

9. Finding, Exploiting and Avoiding Vulnerabilities.

10. Un-cracking Drupal.

Appendix A: Function Reference.

Appendix B: Installing Drupal 6 Fresh Out of the Box.

Appendix C: Leveraging Community Resources.

Glossary: Glosssary of Key Terms.

Index.