Krebs: San Francisco Rail System Hacker Hacked

Submitted by Sam Moore on Wed, 11/30/2016 - 12:55

Well this is gratifying...
Apparently the guy who ransomewared the San Francisco metro wasn't all that secure himself...

Among other takeaways -

...truthfully answering secret questions is a surefire way to get your online account hacked.

Also, be sure to check out the FBI's anti-ransomware guidelines, linked in the article.

Metatags, sharing, and social media

Submitted by Sam Moore on Wed, 10/19/2016 - 09:39

Here's a great guide to tagging your content to optimize presentation on FB, LinkedIn and Twitter: 
"As social media platforms continue to become a dominant traffic source for your content, it becomes even more important to put in the small amount of additional effort to ensure your story can connect with each audience. Through the proper use of metadata, you can easily achieve this goal with your existing content as well as make this a part of your editorial process moving forward."

Bonus: this is quite easy with Drupal and the Metatag module.

The move to HTTPS

Submitted by Sam Moore on Wed, 09/21/2016 - 10:35

Google announced earlier this year that they will begin counting the availability of service over the https protocol on sites as a positive factor for page rank.
Several clients have expressed concern over moving their Drupal sites to https. Drupal has no issues with this, and generally work fine over either protocol; but there's some confusion over broader issues of search, link juice, etc. and how 301s and 302s should be handled. Here's a good summary of the common questions:

Dries Buytaert: How can Drupal web applications compete with native apps?

Submitted by Sam Moore on Fri, 09/16/2016 - 11:12

In the longer term, client-side frameworks like Ember will allow us to build web applications which compete with and even exceed native applications with regard to perceived performance, built-in interactions, and a better developer experience. But these frameworks will also enrich interactions between web applications and device hardware, potentially allowing them to react to pinch-and-zoom, issue native push notifications, and even interact with lower-level devices.

Colan Schwartz: Easy content encryption coming to Drupal 8

Submitted by Sam Moore on Mon, 09/12/2016 - 19:38

There are several scenarios that might require your site’s content to be encrypted in your database. Student data, medical records, any kind of financial data - any site owner who is storing this kind of information is going to be very interested in encryption.

I ran into an issue a couple of years ago where a site owner wanted all the node data encrypted (it was an educational site, with student data privacy concerns). While this is certainly possible, it created performance and usability problems that finally made the client decide to ditch the whole idea.

Now a Google Summer of Code project has turned out a Drupal module - Pubkey Encrypt - that simplifies the whole process, to the point where it's purportedly not a usability or performance disaster any more.

And so Drupal 8 gains one more leg up...