Have you built your site with Drupal and do you have frequent security issues?
I have one site I built on Drupal. It is not as easy to maintain and keep up to date as WordPress and I plan to switch it at some point. I get tons of spam comments and signups, but haven't noticed any security problems at this point.
I had my site compromised recently and I have seen many people post the same issues in the forums. I think Joomla have better security.
I blame myself because when I used the motion captcha it kept out the spammers but one of my friends said she was having difficulty signing up so I removed the captcha for a few hours and BAM! I was attacked.
I am switching to Joomla.
I've a Drupal site too. Spam comments are an issue, but I don't let them get published without approval. And I do the clean up of approval queue once in a few days using SQL queries.
There are no other security issues.
By the way, spam comments are not a security issue of Drupal - one should start using Disqus for comments if they want authorised users to comment.
One problem I've had with Drupal is that Open id does not work as you would expect it to. In which case, I would simply make comments only allowed by authorised users of the website itself, which I think woudl be quite effective in avoiding spam.
Anusha, I had a lapse in judgement. I allowed my users to post without approval and that's where the problem arose. It was just for a few hours that I removed the security feature to allow some who said she had problems signing up. Biggest mistake.
Do you want some help? How many comments are there? I've to remove unpublished comments ranging from 60 -500 or even more if I haven't done the cleanup for some time. You can delete the published comments too - matter of a few minutes. Let me know if you want help. It's possible to do it from UI as well as command line (mysql queries).
It's not the comments. What happened was that I allowed members to place codes in their content, such as Adsense and Amazon. When I removed the captcha, they signed up and created content adding a code which would not allow me to remove their content, even though the permission is set that way.
It's a lot of spam and porn content so I placed the site in maintenance mode in order to remove them but it's really taking a lot of technical work. I going to have to adjust the htaccess file but am considering switching to WP or Joomla.
It also seems that it's affecting the function of the entire site as well.
It's a creative writing site for poetry and short stories only.
I'm not a Drupal Pro but I think this should not be tough. You can ask someone on Drupal forum to confirm this, as well as get some step by step instructions.
There are two "user" related tables in my Drupal 6.x database (might vary in your version).
There is a field which says: "created". All you have to do is delete all the users from tables - users and and user_roles who were created in the duration when you faced the attack.
Similarly, delete all the content - may be it will automatically get deleted if you delete users, I'm not sure - but a set of mysql queries would do your job. Consider taking help from Drupal forums.
Hope this is helpful.
Another thing, such stuff can occur in WP or Joomla too. Authorised users, who have permissions to post content, can break havoc on a website.
I tried that and it's the accounts just wont delete.
If this was the only issue I had, I would probably spend the energy on it but Drupal has had a lot of issues and I need an application I can count on. I love using Drupal because it very easy to build with but I find them to be unstable. I find that Joomla is better.
by thaivalentine5 years ago
CMS is a great tool and I would love to hear feedback from people on preferences for Wordpress, Drupal or Joomla. Thanks in advance:)
by Csanad4 years ago
I read that with Drupal you can do absolutely everything, but Wordpress is easier to learn and for administration of your blog. So which is better on the long term, Drupal or Wordpress?
by glendoncaba6 months ago
I have sought to avoid topics which are potentially divisive within the Christian community here on HubPages. I prefer to disagree politely on minor issues and leave major issues for interpersonal and group...
by akhilkarun3 years ago
Actually getting an Adsense approval was my main motive of joining hubpages.Soon i realize therz a lot more here than just an Adsense.But still!Are there real smart people out there who have go an Adsense approval thru...
by cameciob2 years ago
Why join that? It doesn't even say what it is.
by Kylyssa Shay4 weeks ago
I just learned that administrators will publish any comment we don't promptly decline so moderation will not protect hubs from abusive comments if we are away from HubPages for more than a few days.How can I get the...
Copyright © 2017 HubPages Inc. and respective owners.
Other product and company names shown may be trademarks of their respective owners.
HubPages® is a registered Service Mark of HubPages, Inc.
HubPages and Hubbers (authors) may earn revenue on this page based on affiliate relationships and advertisements with partners including Amazon, Google, and others.