How to Hack a Drupal Site
Hacking is more of an art than a science and this working demonstration will give the audience a chance to get their hands dirty. Drupal's security model tends to focus on technical security and this leaves some key holes in the security model. We'll take an opportunity to show some of these problems, give the audience a chance to work through the problems on a demonstration Drupal site (install distributed to everyone prior to the session), and finally we'll work through some possible solutions to the problems we identify.
This session would be ideally suited to individuals who are responsible for building complete Drupal solutions for deployment. No security background is required. Coding background is not required by will be helpful for understanding some of the concepts discussed in the session.
The audience will be expected to participate in the session with questions and hands on work on the demonstration site.
The demonstration Drupal site will be distributed over the Internet prior to the session, so individuals can download it onto their personal laptops.