Downloads
Release notes
Release 1.1 of the Security Review module for Drupal 6. It is recommended that all 1.0 users upgrade to this release for new features and bug fixes. This release includes several new checks and better processing of the checklist.
To upgrade you should disable and uninstall your existing Security Review module, taking care to record which checks you have skipped, if any, and which roles you have marked as untrusted. Once uninstalled copy over the new module's files and enable.
Changelog:
* Issue #746400 Add administer nodes permission check
* Feature #725902 by coltrane: Give warnings about Views without any access control
* Issue #993942 by coltrane and greggles: Check Filefield extensions
* Issue #755766 by coltrane Better handling of time outs
* Issue #830970 by greggles and coltrane: Test password strength by comparing password to username
* Issue #1087116 by greggles and coltrane: Check dblog module is enabled before providing SQL checks
* Issue #755766 by coltrane: Provide batch processing.
* Updated unsafe tags to include video and audio
* Expanded drush integration
* Drush support for rainbow table password check
* Allow for help when Security Review defines checks on behalf of other modules.
* Issue #989314 by coltrane: Fixed Subsite installation: 'Run checklist' timeout, opendir fails.
* Issue #1007294 by coltrane: Fixed node and comment checks fail then pass.
* Issue #683820 by greggles and coltrane: Indicate what type of dangerous content was found.
* Issue #925832 by greggles | matason: Fixes to input format security check.
