Security in Drupal: what can go wrong?

NEDcamp

The OWASP Top Ten is an industry standard list of the most common vulnerabilities that can affect web sites. This session will start with an overview of the Top Ten, and then take a more detailed look at a few of these vulnerabilities. We will review some actual Drupal security advisories:

What the vulnerability looks like
How the Drupal security team communicates the problem
The code that was updated to fix the problem

Only a few of the slides fall under the last bullet point. You do not need to be a developer to appreciate the rest.

Other Sessions

5 Risk Mitigation Tips for Deploying Drupal at Scale

John Richards II (JRastaban)

Absolute Beginner's Guide to Drupal

Rod Martin (imrodmartin)

Career Contributions: How community can change your life

Kaleem Clarkson (kclarkson)

Creating & Consuming Web Components for Drupal

Andy Blum (andy-blum)

Creating Drupalcode Projects: Drupal ATS by Esteemed

Matt Obert (hotwebmatter)

Creating DrupalCode Projects: Drupal ATS by Esteemed

Matt Obert (hotwebmatter)

Debunking Normal: Accessibility Awareness Training

Donna Bungard (dbungard)

Decoupled Drupal Dev on Docker with Docksal Doing the Dirty Work

J.D. Flynn (dorficus)

Drupal 101

Richard Hood (Rick Hood)

Drupal Development on Linux

Envisioning a Design System Maintained by the Drupal Community

Gatsby: The reactive site generator (and a live demo tour of how we got here)

Shane Thomas (codekarate)

How to Create and Maintain Healthy Communities: The Importance of Psychological Safety

Von Eaton (vonreyes)

How to Lead a Human Workplace

Dori Kelner (dmkelner)

How to Manage Releases Using Git Tags and Semantic Versioning

Michael Miles (mikemiles86)

How to Manage Releases using Git Tags and Semantic Versioning?

Michael Miles (mikemiles86)

I Am Functional and So Can You

J.D. Flynn (dorficus)

Intermediate to Advanced Drupal Front-End Development

Andy Blum (andy-blum)

Intro to Automation for Drupal Projects

Michael Miles (mikemiles86)

Learn Svelte

Christopher Wells (chrisfromredfin)

Make the Fastest Site You've Ever Seen Using Tome and Native Web Components

Nic Laflin (nicxvan)

Pacing Yourself as a Developer (Freelance or Employed)

Alfred Nutile (yurtboy)

Schema.org Blueprints for Drupal

Jacob Samuel Rockowitz (jrockowitz)

SCHEMA.ORG BLUEPRINTS FOR DRUPAL

Jacob Samuel Rockowitz (jrockowitz)

Take Control of Your Tech Career: Focus, Prioritize, and Launch

Dori Kelner (dmkelner)

Matt Obert (hotwebmatter)

The Magic of Collaboration

John Richards II (JRastaban)

The Ultimate Guide to the Media Manager in Drupal 9

Rod Martin (imrodmartin)

Why Is Building Components in Drupal So Difficult?

Kyle Einecker (ctrlADel)

Event

NEDCamp 2022

Speakers

Related Articles

NEDCamp to be Held In-person in November

TDT is a Media Partner for NEDCamp 2022

NEDCamp in November; Are You Going?

Lunch at NEDcamp 2017

NEDCamp 22 Conference Day Schedule; Here Are the 9 O'Clock Sessions

Photo from NEDCamp 2014

NEDCamp 22: Conference Day Sessions at Morning 10 O’Clock