http://2007.oscms-summit.org/taxonomy/term/89/feed The taxonomy view with a depth of 0. en http://2007.oscms-summit.org/node/205 <p>A comprehensive overview of Drupal's system for securing nodes. This session will cover:</p> <ul> <li> How the database is constructed. <li> How the query is rewritten. <li> How it interacts with other Drupal access (particularly permission flags, the published flag and hook_access) <li> The API <li> How to put all this together to write a simple access control module. </ul> http://2007.oscms-summit.org/node/205#comments Drupal api developer node access security Mon, 12 Feb 2007 08:44:37 -0800 merlinofchaos 205 at http://2007.oscms-summit.org http://2007.oscms-summit.org/node/150 <p>Most Drupal-based sites use password-based authentication. This session will discuss and design proposals for improving the current practices. Current ideas include:</p> <ul> <li>Abandoning long-life PHP session cookies</li> <li>Best practices for persistent login (a.k.a. "Remember Me") cookies</li> <li>Not distributing initial account passwords via email</li> <li>Supporting required instead of optional password changes</li> <li>How SSL support should be integrated and configured</li> <li>Preventing hijacking of mixed plaintext/SSL sessions</li> </ul> <p><a href="http://2007.oscms-summit.org/node/150">read more</a></p> http://2007.oscms-summit.org/node/150#comments Drupal login security Sun, 11 Feb 2007 08:01:16 -0800 bjaspan 150 at http://2007.oscms-summit.org