Security

This module is for managing SSL/TLS client certificates to use for login or part of a multi-factor login strategy based on rules and gate-module to improve login security.

This module allows to force using HTTPS at some pages, and HTTP at the others.

The module is very close to Secure Login. It is also intended for sites that want to offer anonymous sessions via HTTP or HTTPS and authenticated sessions only via HTTPS, and anonymous insecure sessions are migrated to authenticated secure sessions upon login.

The difference is that instead defining for what forms HTTPS must be used (like it is for Secure Login), the module allows to define paths for which HTTPS must be used.

As opposed to Ubercart SSL, this module is standalone, and allows settings paths from Drupal UI without using hooks.

Installation and usage

• It is supposed that SSL certificate is properly installed, and the site is accessible through both HTTP and HTTPS
• Download and install module as any other usual drupal module
• If you are logged in at HTTP version of the site, right after installing the module you will be redirected to HTTPS, and hence to re-login.
• Visit admin/config/people/custom-ssl-redirect

This module integrates "Secure Quick Reliable Login" protocol proposed by Steve Gibson, see https://www.grc.com/sqrl/sqrl.htm

This module will find spam present on your site.
Work in progress...

PHP Filter Lock is a security module for Drupal. It disables the ability to edit text fields using the PHP input format until that text format is changed to another format.

This module provide functionality to improve security and mail handling.