Upgrading to Drupal 7.x

By normanparra on

Hallo,
I have a question about upgrading. I want to upgrade a website with an old version of Drupal. What is the best and recommended way to do this? Do I have to upgrade a version at a time or can I just upgrade to the latest version?
Any help will be much appreciated.
Thanks.

Categories: Drupal 4.5.x or older

"Show block on specific pages" box needs php for one "role"

By SilverMarc on

You will already know this... But I don't!

In the "Show BLOCK on specific pages" box I know how to add php code so that my block will only show to one or several users:

<?php
  global $user;
  if (($user->uid == 1)||($user->uid == 6)||($user->uid == 7)) {
    return TRUE;
  }
?>

What php will go in the box so that only a specific ROLE can see the block. The new role I created has an id of 5

Thanks.

--Marc
June 11, 2010 @ 12:43 PM

Categories: Drupal 4.5.x or older

Drupal

By 24hourapartments on

How can Drupal help a business?

Categories: Drupal 4.5.x or older

I want Nice Drupal Theme

By skalepu77 on

Hi,

I am new to Drupal and I would like to develop a site in Drupal to showcase my work.
I basically do comic strips and author some funny stories and Jokes.

I have come across a nice website with SMS Jokes collection :

1) http://www.funnysmsjokes.co.in
2) http://www.mallikcomedy.com

Categories: Drupal 4.5.x or older

CMS

By bryananthonylewis on

I'm having a tuff time with Drupal. The UI seems to be a bit too confusing for my customers. Until Drupal 7 comes out I'm going to try this out.

http://www.concrete5.org

Categories: Drupal 4.5.x or older

IE MIME-sniffer XSS exploitation in Drupal

By p0deje on

Hello. I've wanted to raise an issue that actually isn't within Drupal itself. There is an XSS vulnerability that IE MIME-sniffer creates, which can be easily exploited in Drupal with Upload module enabled. Drupal Security Team won't release a fix, because it's out of Drupal control. More information on vulnerability and fix can be found here

Here is an extract from my blog:

IE always loved to create vulnerabilities where they would never be. Not many people know, but there is an old bug in IE MIME-sniffer, which can be easily exploited. The essence of the bug is that when IE renders file, which was sent along with Content-type: text/plain header, it tries to identify its MIME type. So, if file contains HTML code inside, IE will think its text/html and render it. Simple example of exploit in Drupal:
1. There is a Drupal site with enabled Upload module.
2. Attacker uploads *.txt file with HTML code inside. By default Drupal allows *.txt files.
3. Attacker sends a link to that file to victim.
4. Victim opens it in IE and HTML code is rendered.

Categories: Drupal 4.5.x or older, Drupal 4.6.x, Drupal 4.7.x, Drupal 5.x, Drupal 6.x, Drupal 7.x

Pages

Subscribe with RSS Subscribe to RSS - Drupal 4.5.x or older