Let’s see where to start first. There will be a lot of “first” today in this post, that’s really exciting and shows that 2017 started quite encouraging. The Splash Awards took place yesterday in Hamburg - it’s the first time that Germany hosted this Drupal event. The first Splash Awards ever were organized by the Dutch Drupal Foundation in the Netherlands back in 2014 (thank you for encouraging all other countries!).
The holiday season was a lot of fun for the Drop Guard team, but also very busy. We've worked hard to deliver a whole package of impressive features and improvements to our update management platform. Big plans were also made for 2017. Without further hesitation let's start the New Year with the news!
Two days ago another highly critical security update affected Drupal and many other CMS systems. It was the PHPMailer Library which leaves millions of websites vulnerable to the remote exploit (see https://www.drupal.org/psa-2016-004 for details). In comparison to Drupalgeddon which had a risk of 25/25 this update has 23/25. BUT there are some things which make this update even riskier than Drupalgeddon:
Our CEO Manuel and Joe, Marcel and Serkan from our team visited the last Drupal event of this year in our calendar: DrupalCamp Munich alias #dugmuc. It's been a pleasure to support this event as Silver Sponsor! With the 4th of December, we closed the Drupal season with great “Days”, “Camps” and “Cons” in 2016.
A lot of Drupal community members, who are interested in or already use Drop Guard, were waiting for this ultimate guide on continuous security in Drupal. Using Drop Guard in a daily routine improved update workflows and increased the efficiency of the website support for all of our users. But there were still a lot of blind spots and unexplored capabilities such as using Drop Guard as an "SLA catalyser". So we've stuck our heads together and figured out how to share this information with you in a professional and condensed way.
It's no secret that Drupal's success depends heavily on the collaborative community culture and the continuous communication process between all members of the community. It’s not for nothing that we embrace the “come for the code, stay for the community” mantra.
Today we're asking you - an agency, freelancer or a lone webmaster - to think with us a little bit about the quality of security protection your service provider delivers to ensure your website and online services are running smoothly.
We want to thank Tim Wayne from UAB Collat School of Business for the following security guest post!
Despite the news of security exploits and data breaches that shakes our confidence in information security on a daily basis, one of the biggest threats to security at work continues to be carelessness — at least according to the majority of business owners and managers as illustrated in the graphic below.
Dublin, 27. Sept. 2016. “Describe the DrupalCon in just one word!” - “EXCITING!”
First of all, I want to thank everyone who made my first DrupalCon this awesome and extra special!
Our whole team enjoyed a week full of new experiences, great sessions and - of course - old and new friends! The place, Dublin, was perfect to “seal” a new friendship or strengthen an old one with a good morning coffee (thanks to Commerce Guys by actualys and Mailchimp, the two coffee break sponsors!) or a good cold Guinness (I tried to remember the bar names, but actually I guess I sealed a lot of new friendships..).
Only 20 days are left until we head to Dublin to join the DrupalCon 2016! It’s the first time that we, the Drupal agency team from Bright Solutions (which is the "birthplace" of Drop Guard), arrive at a Con only with our Drop Guard team, so we can focus on our most famous contribution to the Community: our update management service tool “Drop Guard”.
Yes, we’d be happy to show people the great values which Drop Guard provides - but most of all we look forward to personal and honest conversations to progress in our work and as part of the Community!
Being casual about open source security is not funny. Headlines like the Panama Papers this year showed that an improvident dealing with security and updates can cause a huge damage. Fees are still a crucial reason for people to hesitate to secure their business by using charged services. This is not a pitty - this is grave.
There are many people out there who give a lot without receiving a reward. They see more benefits in helping and strengthen people, any kind of living being or purpose than in a regular salary.