Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.
By aerps on
My site is up and running.
Is there any security precautions that I have to take into consideration?
I had read somewhere that there is a file that I need to make read-only, but I can't remember what the file name is.
Besides, the module Mollom for the spam. Is there any other module that I need to use in reference to the security.
Any recommendation or advice would be appreciated.
Thank you,
Comments
How to maintain a secure site
Security vs Convenience
Not everything listed here are suitable for all sites.
You must balance between security and convenience.
Backup your files and database
Check your status report
Administer -> Reports -> Status report
Make sure everything is green.
Ensure that your LAMP stack and Drupal installations are up-to-date
Read and follow security announcements.
http://drupal.org/security
Install security modules
http://crackingdrupal.com/blog/ben-jeavons/contributed-modules-securing-...
Maintain a secure configuration
http://drupal.org/security/secure-configuration
Read book(s) written by Drupal Security Team
A number of modules are featured.
http://drupal.org/node/597378
Write secure code
http://drupal.org/writing-secure-code