Category: drupal
OSTraining: OSTips – How to Force Strong Passwords in Drupal 9
One of the problems in Drupal core “out of the box” is that you can pretty much use anything you want for a password. And while your business might have a policy against weak passwords if Drupal doesn’t enforce them, well, you know how people are. I get this question in training all the time,…
Evolving Web: 3 Ways to Avoid Common Information Architecture Mistakes
We all recognize bad information architecture when we see it on a website. There are some signs that the creators didn’t do a great job in terms of content structure and organization: Confusing menu labels Haphazard topic organization Critical information and actions jumbled in with general news and marketing copy Site searches that return useless,…
Tag1 Consulting: How to analyze Goose load testing results using New Relic
In today’s Tag1 Team Talk, Managing Director Michael Meyers sits down with VP of Software Engineering Fabian Franz, and CEO Jeremy Andrews for a coordinated demonstration of Goose and New Relic. Goose is the highly performant load testing framework written in Rust, and New Relic is one of the most highly regarded performance analysis tools…
Security advisories: Drupal core – Moderately critical – Third-party libraries – SA-CORE-2021-005
Project: Drupal coreDate: 2021-August-12Security risk: Moderately critical 13∕25 AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:DefaultVulnerability: Third-party librariesDescription: The Drupal project uses the CKEditor, library for WYSIWYG editing. CKEditor has released a security update that impacts Drupal. Vulnerabilities are possible if Drupal is configured to allow use of the CKEditor library for WYSIWYG editing. An attacker that can create or edit content (even without access to CKEditor…
Bounteous.com: Customizing Your Drupal Commerce Forms
Your digital shopping experience and checkout flow can be as distinctive as your brand. Customizing your Drupal commerce forms through these entry points.
Drupal Association blog: Meet one of our 2021 Discover Drupal Students, Nadia Faucon
After over a year of planning, the Discover Drupal 2021 student cohort began their journey in July! This year we have eight students. We will be highlighting each student who has opted in to share their personal journey. This month we welcome Nadia Faucon as our featured student! Nadia currently lives in Arizona and is…
Drupal In the News: Drupal Steward expands availability after successful pilot year
The new security firewall from the Drupal Association is already protecting thousands of sites, and is now available to any Drupal site owner. After a successful first year, the Drupal Association’s web application firewall, Drupal Steward, is launching a new community tier, making the enhanced security available to all Drupal site owners. Drupal Steward provides…
Consensus Enterprises: Easy commit credits with migrations, part 1: Migrating Drupal Core
Why you should care about contrib migrations, running a core migration, and a Drupal.org proposal.
Droptica: Review of the Drupal Configuration in terms of Security
In the first part of the series on Drupal security audits, we described how to review modules and libraries. However, modules and dependencies will be useless if any user will be able to see our custom routing where we display all the client information. Therefore, in this article we’ll look at the configuration of our…