10 Steps to Follow before a Drupal Security Release

Drupal being one of the most celebrated CMSs, seldom fails to please developers. With more new features of modern design and coding available in it, the arrival of Drupal’s new version Drupal 7 has enthralled the open source CMS developers and users across the globe.

Drupal Development Services

Resource: drupal.org

Following are few of the pluses that make Drupal 7 a great choice….

  • The installation process has been simplified. Drupal supports most web servers (Apache is recommended), PHP 5.2.4+, and most databases (MySQL 5.0.15+ is recommended).
  • Drupal 7 is user friendly and thus finding as well as carrying out your daily tasks gets easier once the administrative interface is revamped.
  • Drupal is fast and can handle huge amounts of traffic with better caching and improved JavaScript and CSS (Cascading Style Sheets) optimization.
  • It’s more flexible and thus you can define content structure of your own and add custom fields to the content, comments, users, and so on.
  • Accessibility is better and Drupal now offers semantic web support with RDFa (or Resource Description Framework – in – attributes).
  • Being open source, Drupal receives ongoing betterment from the thousands of productive and smart people working together for enhancing Drupal, themes, modules and distributions.

Finally, go ahead and hit the web using Drupal 7. Thousands of add-on Drupal 7 modules and designs will let you build any site you imagine!

Drupal’s security features are among the bests any CMS can provide. Having said that, let’s now talk about 10 steps to a Drupal Security Release…

What is a Drupal Security Team?

The Drupal security team compares of a group of world’s leading Drupal Development Services and web security experts who make them available (always) on call to help other developers to assess, evaluate and address issues.

Who are Project Maintainers?

Drupal’s active developer community is more than 15,000 strong and includes experts in all areas of today’s web and its technologies. Different maintainers are responsible for different plug-in modules and Drupal’s core.

Who are Drupal Users?

More than 700,000 people running more than 1 million websites, use, test, and improve Drupal on a daily basis. New vulnerabilities are quickly identified and confidentially reported to the Drupal security team.

Now let’s discuss 10 steps to a Drupal Security Release:

1. Vulnerability in code discovered.

2. Issue reported privately to security team.

3. Issue reviewed, potential impact on all supported Drupal release evaluated.

4. If the threat is valid, Security Team mobilized for analysis and notify the maintainer.

5. Security team provides support and maintainers fixes the issue.

6. Fixes reviewed and discussed.

7. Code patches created and tested.

8. New, fixed versions made available on Drupal.org.

9. Security advisory written and published via website, newsletter, RSS, Twitter, social media etc.

10. New versions deployed on all sites.


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s