Drupal Security for Coders - How to Avoid "All Your Base Are Belong To Us"

Ever had the embarrassing 'All your bases are belong to us' moment? Staying safe when creating your custom modules is essential to creating a secure and stable website in Drupal. This session will focus on beginners and intermediate module builders who want to learn more about Drupal APIs in relation to security, find out what all the strange words such as CSRF, XSS or SQL Injection mean and learn how to protect their modules against most common attacks. I'll be sharing specific knowledge I've gained as a member of the Drupal Security Team and from experience doing security audits for large scale sites.


Time slot: 
Tuesday 5:00pm-6:00pm
Coding and development
Experience level: 
Questions answered by this session: 
How do I use Drupal API's correctly?
What is CSRF, XSS, SQL Injection?
How to prevent CSRF, XSS, SQL Injection attacks on my site?


The correct quote is "All your base are belong to us." Not bases. Seriously! :)

oh my!

Here's a link to the Prezi, we'll post more material later: http://prezi.com/-ox5sthescyl/drupal-security-denver/

Thanks for the excellent presentation and for posting the video. Where's the feedback button? Am I not seeing it?

Colorado mountains