Greg Knaddison (greggles) is the author of Cracking Drupal: A Drop in the Bucket, a new book about Drupal security. Greg has been a contributing member of the Drupal community for over three and one-half years and is a member of Drupal's Security Team. He is a maintainer of 2 of Drupal's most widely-used contributed modules: Pathauto and Token.
Join DrupalEasy's Mike Anello as he interviews Greg about all things related to Drupal security including best practices for site administrators and module developers.
Wiley Publishing has provided DrupalEasy with several copies of Greg's book to give away to listeners - listen to the podcast to learn how you can get your hands on a free copy! Be sure to include your contact information in case you win!
Some of the links mentioned in the podcast:
- Drupal Security Scanner module
- Salt module
- Persistent login
- Official Cracking Drupal book site - includes code snippets and modules from the book.
- Greg and Ben Jeavons' proposed session for DrupalCon Paris
- Growing Venture Solutions
- Coder Module
- @knaddison on Twitter
- chx's Drupal.org user profile
- Cross-site Scripting description from Wikipedia.com
- Drupal.org security advisory 2008-063 - this one deals with incorrect hook_menu() upgrades.
I think I had some sort of mind-block that kept me from pronouncing Greg's last name correctly during the podcast. I believe it should be pronounced "ka-NA-da-son" (I insisted on making the "K" silent). My apologies to Greg!