Post installation

Hi
I want to collect all nodes from an Aggregator2 feed on one page. The feed is assigned a specific vocabulary, so something tells me I should be able to view the nodes using a url like www.mysite.com/vocabulary/6 but that doesn't work. Suggestions?

Thanks,
Johan

I'm having problems with multisite themes. I created a a new site in my sites folder and added a themes folder with a theme. The problem is Drupal is reading the theme files from the main site setup and not from my new site's theme folder. Any help is appreciated thanks.

Here's my setup:
sites/default
sites/newsite
sites/newsite/themes
sites/newsite/themes/mytheme

I'm going through my "public_html" directory now and trying to restrict things which shouldn't be world-writeable/executable (but which are). Now I don't know what state the permissions are in drupal core, because I used Fantastico scripts to install. In fact, Fantastico (which isn't so fantastic) mucks everything up. It's very fast and loose with the +x and the +w. That's a separate issue which people should be aware of, but which can't be fixed here.

But I end up being able to get:

# querying this should give an "access denied" but doesn't
http: //<mysite>/sites/default/settings.php

# Many world readable/writeable - don't need to be
http://<mysite>/modules/*/LICENSE.txt|CHANGELOG|README.txt|etc 

The most troubling thing about the settings.php is this: What if you're editing your site's config and you miss a bracket? Now your database passwords are out in the open for any hacker to see. I think it's ok to run them (and testing seems to confirm this): chmod u+rw settings.php (it gets included right, or do I need +x too?). This gives me an access denied 403 when I try to access it directly, which is what I was aiming for.

And almost all the modules I download out of contrib have world writeable .module files, .txt files which are a+x, *.mysql/pgsql files which are world readable, etc. So, now anybody in the world can query/probe your website for which modules you have installed and then use that knowledge to exploit any security holes which might exist in those modules. And, they can even figure out your database schemas while they're at it!

I think the Xstatistics module is really great and can't for the life of me figure out how it hasn't been done before. I have to manage serveral Drupal sites and to have the Xstatistics output in a series of RSS feeds would be fantastic. That would allow me to subscribe to the feeds in a single web interface and see the information on all sites in one place. Maybe this can already be done.

Hello!

I run a website at http://www.allaboutdolphins.net. I am currently having the following issue:

For each the stories that get posted to the frontpage, at the bottom of each story's page I would like to place an adsense block. I have the adsense module installed, and use it to control the rest of my Adsense. If I place an adsense module at the very bottom of a node, howver, instead of displaying only a teaser from that story on the front page, it will display the entire story.

Hi,
I wanted to know how I can add static content to the drupal main page.
For example, If you see the spread firefox main page, there are some static stuff on the top, which is followed by news.
I want to do something like that. How do I do it?
bye