[support] php-code in block is not executed...
Mr. Jarry
mr.jarry at gmail.com
Thu Jan 20 10:03:02 UTC 2011
On Thu, Jan 20, 2011 at 9:54 AM, Warren Vail <warren at vailtech.net> wrote:
> Thought I’d just ask the unasked question, does your page contain
> vulnerabilities that can be exploited by hackers, vulnerabilities that could
> compromise your drupal site? Just for one example, does it allow loading
> your site disk with hundreds/thousands of space consuming files?
>
I would like to think it is secure, but no one can be sure. Even when I try
to update it frequently, there still might be not_yet_discovered
vulnerabilities.
Users can upload files, but quota for disk space is applied. But even quota
could be circumvented sometimes...
Jarry
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.drupal.org/pipermail/support/attachments/20110120/54bc3597/attachment.html
More information about the support
mailing list