Hack-proof Your Drupal App

Submitted by ebeyrent on June 9, 2009 - 20:06

security

Your session in a few words:

You will learn best practices you can employ right now to build secure Drupal application code that meets security compliance standards and maintain customer confidence.

Track:

Code it, test it, deploy it

Session Type:

Lecture

Level of expertise:

Intermediate

Language:

English

Abstract:

What you don’t know can hurt you. Analysts estimate that 75% of attacks against web servers enter at the application, not the network level. As many as 15% of these attacks are due to poor coding practices. We'll discuss ways to secure your Drupal application.

Agenda:

See For Yourself - demonstrations of application attacks
Case Study: Secrets to Securing a Social Network
Key Habits of Secure Drupal Coding
Vulnerability Detection, Remediation, and Mitigation
Security Resources for Drupal Applications
Discussions

Goals:

You will learn best practices you can employ right now to build secure Drupal application code that meets security compliance standards and maintain customer confidence.

Resources:

Drupal.org

Drupal Security Team

http://drupal.org/node/32750

Pro Drupal Development book

http://drupalbook.com

Conference is sold out

Erich Beyrent

Erich has 12 years experience in web technologies, specializing in open-source solutions and application integration. He is currently the Vice President of Engineering at CommonPlaces e-Solutions, LLC, and led the team that built Greenopolis.com, an environmentally-themed social networking and education site. Erich also led the team that built Twolia.com, a social networking and e-commerce platform for independent female artists that mimics Facebook, Etsy.com, MySpace, and YouTube. Erich is the author of the Permissions API module, and maintains the Drupal 6 version of the Signup Restrict By Role module. Erich lives in New Hampshire with his wife, two sons, and two weimaraners.