Public repository for a Drupal installation: What security risks?

Posted by Rosarch on Stack Overflow See other posts from Stack Overflow or by Rosarch
Published on 2010-06-11T03:56:56Z Indexed on 2010/06/11 4:02 UTC
Read the original article Hit count: 170

Filed under:

security

|

drupal-6

|

source-control

|

project-hosting

I'm putting a Drupal project on an open source hosting site. What files do I have to not put up there so I don't compromise my site's security?

Various settings.php comes to mind. And obviously the database itself won't be in a repository. Anything else dangerous?

I'm running Drupal 6.

© Stack Overflow or respective owner

Related posts about security

sudo apt-get update errors

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
Here is what I get on my terminal when running sudo apt-get update errors. I dont know if the issue is from my sources.list or my proxy setup(have not made any changes to proxies). Thank you for any help in advanced. Ign http://security.ubuntu.com oneiric-security Release.gpg Ign http://security… >>> More
The Security-Developer Gap: Why IT Security Can't Fix Your Security Problems Alone

as seen on Devx - Search for 'Devx'
Two well-known white hats explain how hackers take advantage of security holes left by enterprise application developers. >>> More
The Security-Developer Gap: Why IT Security Can't Fix Your Security Problems Alone

as seen on Internet.com - Search for 'Internet.com'
Two well-known white hats explain how hackers take advantage of security holes left by enterprise application developers. >>> More
StackOverFlowError while creating Mac object on AS400/Java

as seen on Stack Overflow - Search for 'Stack Overflow'
Hello all, I am a newbie to AS400-Java programming. I am trying to create my first program to test the implementation of Message Authentication Code (MAC). I am trying to use the HMACSHA1 hash function. My (Java 1.4) program runs fine on a dev box (V5R4).But fails terribly on the QA box (V5R3). My… >>> More
Google App Engine - Spring Security Issue (java.security.AccessControlException)

as seen on Stack Overflow - Search for 'Stack Overflow'
I'm currently getting the AccessControlException below when I deploy to app engine (I don't see it when I run in my local environment). I'm using GAE 1.3.1, Spring 3.0.1, and Spring Security 3.0.2. Any ideas how to get around this issue? It appears to be an issue with Spring Security trying to get… >>> More

Related posts about drupal-6

Commercial Drupal Modules & Themes

as seen on Just Skins - Search for 'Just Skins'
A discussion at Drupal.org forums prompted me to give my input about commercial ecosystem around Open Source Content Management Systems. WordPress and Joomla have been growing rapidly since past few years. But, growth rate of Drupal seems to be almost flat. Despite being the most powerful CMS around… >>> More
better to wait Drupal 7 to start learning Drupal, or no big difference with Drupal 6?

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi friends, I'm going to start some projects in next weeks. I currently have my custom cms, but i wanna go for opensource cms solution from now on. and as i researched Drupal is COOL for any kind of project from small scope to most complex ones. I have never used Drupal before, I know nothing about… >>> More
Drupal 6: Drupal Themer gives same candidate name for different type of content types

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi friends, I'm a drupal newbie... I have different type of contents like News, Events, etc. and their content is different. News detail page has title-content text-date. but Events detail page has title-date-content text-location-speaker-etc. So I need different layout page for these different… >>> More
drupal: how to generate doc files in drupal is there any possibility to that

as seen on Stack Overflow - Search for 'Stack Overflow'
how to generate doc file in drupal files.. do we have module for that... as pdf generation module... >>> More
Drupal 6 vs Drupal 7 performance

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi all. I want to start new project and stuck without idea what version to use. I have huge expirience with D6, and also one project (module developement) for D7. It looks like D7 slower, have bigger memory consumption and also have a lack of documentation by the moment. I don't need new CCK, Views… >>> More