Drupal Mexico: actualización sobre la actualización

rfp-robotRFP ROBOT: Website Request for Proposal Generator

The time has come for a new website (or website redesign), which means you need to write a website request for proposal or web RFP. A Google search produces a few examples, but they vary wildly and don’t seem to speak really to your goals for developing or redesigning a new website. You need to write a website RFP that will clearly articulate your needs and generate responses from the best website designers and developers out there. But how?

Have no fear, RFP Robot is here. He will walk you through a step-by-step process to help you work through the details of your project and create a PDF formatted website design RFP that will provide the information vendors need to write an accurate bid. RFP Robot will tell you what info you should include, point out pitfalls, and give examples.


Después de que esta semana dieron detalles técnicos de la vulnerabilidad de varias versiones en drupal, empezaron ahora si a atacar sitios con drupal. lo que recomiendan es que si no se hizo la actualización hace unas semanas. lo mejor es regresar a un respaldo más antiguo y restablecer desde esa copia.

En fin a leer los diferentes post y a preocuparse de los sitios no actualizados.

El ultimo reporte en drupal.org
https://www.drupal.org/psa-2018-002

El artículo que explica como usar la vunerabilidad (nombrada ahora Drupalgeddon 2)
https://research.checkpoint.com/uncovering-drupalgeddon-2/

La nota que avisa de los ataques
https://thehackernews.com/2018/04/drupal-rce-exploit-code.html
Categorias: SeguridadVersión: Drupal 6Drupal 7Drupal 8
Source: New feed

Posted on April 22, 2019 in Denver Drupal Development

Share the Story

About the Author

This is the "wpengine" admin user that our staff uses to gain access to your admin area to provide support and troubleshooting. It can only be accessed by a button in our secure log that auto generates a password and dumps that password after the staff member has logged in. We have taken extreme measures to ensure that our own user is not going to be misused to harm any of our clients sites.