Talking Drupal
Talking Drupal is a weekly chat about web design and development by a group a guys with one thing in common, we love Drupal. With hosts Stephen Cross, John Picozzi and Nic Laflin.

Today we are talking about Drupal Security with Mark Shropshire & Benji Fisher.

For show notes visit:


  • Why do you care about security
  • Best tips for securing Drupal
  • Common Security Issues people have with Drupal
  • Convincing module maintainers to do full releases
  • Testing to ensure security
  • Guardr Drupal security distribution
  • What does the Drupal Security team do
  • Finding issues
  • Review compromised sites
  • Becoming a member
  • Process for writing security notices
  • Helping the security team



Benji Fisher - @benji17fisher
Mark Shropshire - @shrop


Nic Laflin - @nicxvan
John Picozzi - @johnpicozzi
Jordan Graham - @jordanlgraham



Martin Anderson-Clutz - @mandclu
Integrates your Drupal site with the open source CrowdSec Security Engine, a collaborative malicious activity detection and remediation tool.

Direct download: td-396-libsyn.mp3
Category:general -- posted at: 2:00pm EDT