This site is archived.

Security: Process, code & hands-on training

16 August 2010
We are sorry, the training Security: Process, code & hands-on training has been canceled. For further information please contact support@drupalcon.dk

Web security threats are real, and your site is probably vulnerable to attack. In this full-day 8-hour session you'll learn how to make your site and processes secure. The training begins with a review of the most common kinds of vulnerabilities found in Drupal sites. We'll then break them down and focus on the specific ways to address those problems in both site configuration and code. The day will end with a practical, hands-on site review where attendees will have time to review a Drupal site to identify and fix vulnerabilities individually.

Language: English
Duration: 8 hours
Style: hands-on training
Minimum attendees: 15
Maximum attendees: 30

Prerequisities

  • Familiarity with Drupal site building
  • Some Drupal programming or PHP knowledge required

Goals

  • Understanding web security risks
  • Spotting exploitable code
  • Exploiting vulnerabilities
  • Knowing correct usage of Drupal's APIs and best practices

Agenda

  • Web security risks
  • Common vulnerabilities and how to exploit
  • How to fix vulnerabilities and correct usage of Drupal's APIs and best practices
  • Hands-on site auditing

Difficulty level

Intermediate to Advanced

Trainers

Ezra Gildesgame
Ben Jeavons
Carl Wiedmann

Related sessions: