Tagged Questions
3
votes
1answer
61 views
Why should the Hacked! module not be used on a production server?
In the source code of the Hacked! module, it says it should never be used on a production server.
/**
* @file
* The Hacked! module, shows which project have been changed since download.
*
* We ...
5
votes
3answers
447 views
Is drupal safe against brute force login attacks?
A brute-force attack is an attempt to gain unauthorized access to a website by continually generating and inputting various combinations of a password. This task is usually done by automation software ...
6
votes
2answers
72 views
Module available for forcing users to re-enter their password to view/edit certain user account fields?
My users have custom fields for their user account that can contain some sensitive information. To protect against privilege escalation vulnerabilities, I'd like to make these fields only readable and ...
2
votes
2answers
235 views
drupal module secure pages toggles between http and https on reload
I am using the secure pages drupal module to enable https for some of the pages , but i have noticed one bug in this , each time i reload the page its toggling between http and https, and if i go from ...
5
votes
2answers
798 views
Secure Pages module is not redirecting
I installed Secure Pages on a site, where I need to secure admin and user login pages. In general, it does its job, but when the user first tries to log in, and goes to the /user page, that page is ...
12
votes
1answer
369 views
Is there a module that can force a user to relogin when they got to a specific section (like admin)?
I could have sworn I used this module in the past, but I can't seem to find it. I'm looking for a module that would force a logged-in users to re-login when they try to visit the administration ...
