[Imc-drupal-dev] [IMC-Tech] Login for Drupal
Cameron Gregg
cam at earthanarchy.org
Tue May 16 20:56:00 PDT 2006
eric wrote:
> i am sole linux tech on bigmuddyimc.org. i'm running fedora. there is
> one other tech for our imc who helps with the cms. the editors wanted
> to switch to drupal as they want an easier cms for their use. we are
> switching the server to run drupal. i temporarily set it up as
> bigmuddyimc.org/drupal. i myself need to deal with something simpler
> than dada as i don't have the time to do the update. also, something
> with more documentation would be great. currently, my concerns with
> drupal are ip logging, login, spam and to some degree security.
>
> 1) i would like to know how i can set it up so as to not require email
> login. so someone can give an email of me at here <mailto:me at here> for
> example and create a password without email confirmation.
I'm not sure how to do this. I must ask why you want this? It means
people cannot retreive their password when they forget it and you'll end
up with lots of unused, or used once accounts.
> 2) does drupal itself do any logging?
yes. it can be disabled. see this:
https://docs.indymedia.org/view/Devel/ImcDrupalDevAnonymization
I use the second method of putting:
$_SERVER["REMOTE_ADDR"] = time();
in boostrap.inc
> 3) what kind of spam filtering is available for drupal?
there is captcha module on the drupal website, and there is a spam
module here: http://www.kerneltrap.org/jeremy/drupal/spam/
> 4) are there specific security holes in drupal that i should be
> concerned about?
nothing that I know of at the moment. There has been some xml-rpc holes
in the recent past.
Cam
More information about the Imc-drupal-dev
mailing list