Advisory regarding availability of Drupal based sites
bcooksley at kde.org
Thu Apr 26 07:53:52 UTC 2018
In the wake of the third severe Drupal security advisory affecting
it's core across both Drupal 7 and 8, we will be implementing new
security policies surrounding the operation of Drupal sites.
In particular, we will be prohibiting the deployment of any new site
based on the Drupal platform, and any future update or security
advisories we receive will result in the sites being made fully
inaccessible until such time we can apply the necessary patches.
Additional system level configuration changes will also be made to
further protect our systems.
This policy will remain in place until such time as we can be sure the
Drupal community has remedied the current series of Remote Code
Execution vulnerabilities in their product.
More information about the kde-community