Have you built your site with Drupal and do you have frequent security issues?
I have one site I built on Drupal. It is not as easy to maintain and keep up to date as WordPress and I plan to switch it at some point. I get tons of spam comments and signups, but haven't noticed any security problems at this point.
I had my site compromised recently and I have seen many people post the same issues in the forums. I think Joomla have better security.
I blame myself because when I used the motion captcha it kept out the spammers but one of my friends said she was having difficulty signing up so I removed the captcha for a few hours and BAM! I was attacked.
I am switching to Joomla.
I've a Drupal site too. Spam comments are an issue, but I don't let them get published without approval. And I do the clean up of approval queue once in a few days using SQL queries.
There are no other security issues.
By the way, spam comments are not a security issue of Drupal - one should start using Disqus for comments if they want authorised users to comment.
One problem I've had with Drupal is that Open id does not work as you would expect it to. In which case, I would simply make comments only allowed by authorised users of the website itself, which I think woudl be quite effective in avoiding spam.
Anusha, I had a lapse in judgement. I allowed my users to post without approval and that's where the problem arose. It was just for a few hours that I removed the security feature to allow some who said she had problems signing up. Biggest mistake.
Do you want some help? How many comments are there? I've to remove unpublished comments ranging from 60 -500 or even more if I haven't done the cleanup for some time. You can delete the published comments too - matter of a few minutes. Let me know if you want help. It's possible to do it from UI as well as command line (mysql queries).
It's not the comments. What happened was that I allowed members to place codes in their content, such as Adsense and Amazon. When I removed the captcha, they signed up and created content adding a code which would not allow me to remove their content, even though the permission is set that way.
It's a lot of spam and porn content so I placed the site in maintenance mode in order to remove them but it's really taking a lot of technical work. I going to have to adjust the htaccess file but am considering switching to WP or Joomla.
It also seems that it's affecting the function of the entire site as well.
It's a creative writing site for poetry and short stories only.
Cardisa,
I'm not a Drupal Pro but I think this should not be tough. You can ask someone on Drupal forum to confirm this, as well as get some step by step instructions.
There are two "user" related tables in my Drupal 6.x database (might vary in your version).
There is a field which says: "created". All you have to do is delete all the users from tables - users and and user_roles who were created in the duration when you faced the attack.
Similarly, delete all the content - may be it will automatically get deleted if you delete users, I'm not sure - but a set of mysql queries would do your job. Consider taking help from Drupal forums.
Hope this is helpful.
Another thing, such stuff can occur in WP or Joomla too. Authorised users, who have permissions to post content, can break havoc on a website.
Regards,
Anusha
I tried that and it's the accounts just wont delete.
If this was the only issue I had, I would probably spend the energy on it but Drupal has had a lot of issues and I need an application I can count on. I love using Drupal because it very easy to build with but I find them to be unstable. I find that Joomla is better.
by Sarah 13 years ago
Does anyone use the site Tumblr? If so could you please let me know what it's like, thanks
by Destiny Rose 14 years ago
if so, how did it go?
by cameciob 9 years ago
Why join that? It doesn't even say what it is.
by l.fleurimond 11 years ago
How to customize a drupal theme
by kirstenblog 14 years ago
I posted my first article to 411 article and wonder what others who have tried it have found it? I take it that the article you publish with them can be used by web master or blogger etc. who need content and that they include your signature with a back link to your other sites, blogs or articles...
by Grace Whites 12 years ago
Is Drupal CMS the best content management software? Why and How?
Copyright © 2024 The Arena Media Brands, LLC and respective content providers on this website. HubPages® is a registered trademark of The Arena Platform, Inc. Other product and company names shown may be trademarks of their respective owners. The Arena Media Brands, LLC and respective content providers to this website may receive compensation for some links to products and services on this website.
Copyright © 2024 Maven Media Brands, LLC and respective owners.
As a user in the EEA, your approval is needed on a few things. To provide a better website experience, hubpages.com uses cookies (and other similar technologies) and may collect, process, and share personal data. Please choose which areas of our service you consent to our doing so.
For more information on managing or withdrawing consents and how we handle data, visit our Privacy Policy at: https://corp.maven.io/privacy-policy
Show DetailsNecessary | |
---|---|
HubPages Device ID | This is used to identify particular browsers or devices when the access the service, and is used for security reasons. |
Login | This is necessary to sign in to the HubPages Service. |
Google Recaptcha | This is used to prevent bots and spam. (Privacy Policy) |
Akismet | This is used to detect comment spam. (Privacy Policy) |
HubPages Google Analytics | This is used to provide data on traffic to our website, all personally identifyable data is anonymized. (Privacy Policy) |
HubPages Traffic Pixel | This is used to collect data on traffic to articles and other pages on our site. Unless you are signed in to a HubPages account, all personally identifiable information is anonymized. |
Amazon Web Services | This is a cloud services platform that we used to host our service. (Privacy Policy) |
Cloudflare | This is a cloud CDN service that we use to efficiently deliver files required for our service to operate such as javascript, cascading style sheets, images, and videos. (Privacy Policy) |
Google Hosted Libraries | Javascript software libraries such as jQuery are loaded at endpoints on the googleapis.com or gstatic.com domains, for performance and efficiency reasons. (Privacy Policy) |
Features | |
---|---|
Google Custom Search | This is feature allows you to search the site. (Privacy Policy) |
Google Maps | Some articles have Google Maps embedded in them. (Privacy Policy) |
Google Charts | This is used to display charts and graphs on articles and the author center. (Privacy Policy) |
Google AdSense Host API | This service allows you to sign up for or associate a Google AdSense account with HubPages, so that you can earn money from ads on your articles. No data is shared unless you engage with this feature. (Privacy Policy) |
Google YouTube | Some articles have YouTube videos embedded in them. (Privacy Policy) |
Vimeo | Some articles have Vimeo videos embedded in them. (Privacy Policy) |
Paypal | This is used for a registered author who enrolls in the HubPages Earnings program and requests to be paid via PayPal. No data is shared with Paypal unless you engage with this feature. (Privacy Policy) |
Facebook Login | You can use this to streamline signing up for, or signing in to your Hubpages account. No data is shared with Facebook unless you engage with this feature. (Privacy Policy) |
Maven | This supports the Maven widget and search functionality. (Privacy Policy) |
Marketing | |
---|---|
Google AdSense | This is an ad network. (Privacy Policy) |
Google DoubleClick | Google provides ad serving technology and runs an ad network. (Privacy Policy) |
Index Exchange | This is an ad network. (Privacy Policy) |
Sovrn | This is an ad network. (Privacy Policy) |
Facebook Ads | This is an ad network. (Privacy Policy) |
Amazon Unified Ad Marketplace | This is an ad network. (Privacy Policy) |
AppNexus | This is an ad network. (Privacy Policy) |
Openx | This is an ad network. (Privacy Policy) |
Rubicon Project | This is an ad network. (Privacy Policy) |
TripleLift | This is an ad network. (Privacy Policy) |
Say Media | We partner with Say Media to deliver ad campaigns on our sites. (Privacy Policy) |
Remarketing Pixels | We may use remarketing pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to advertise the HubPages Service to people that have visited our sites. |
Conversion Tracking Pixels | We may use conversion tracking pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to identify when an advertisement has successfully resulted in the desired action, such as signing up for the HubPages Service or publishing an article on the HubPages Service. |
Statistics | |
---|---|
Author Google Analytics | This is used to provide traffic data and reports to the authors of articles on the HubPages Service. (Privacy Policy) |
Comscore | ComScore is a media measurement and analytics company providing marketing data and analytics to enterprises, media and advertising agencies, and publishers. Non-consent will result in ComScore only processing obfuscated personal data. (Privacy Policy) |
Amazon Tracking Pixel | Some articles display amazon products as part of the Amazon Affiliate program, this pixel provides traffic statistics for those products (Privacy Policy) |
Clicksco | This is a data management platform studying reader behavior (Privacy Policy) |