Security

Features

The AdminRSS module creates RSS feeds for the administrative information for Drupal websites.

Invisimail provides a content filter to hide email addresses from spam-bots.

Bad Behavior is a set of PHP scripts which prevents spambots from accessing your site by analyzing their actual HTTP requests and comparing them to profiles from known spambots. It goes far beyond User-Agent and Referer, however.

This module is about strengthening the security of your Drupal site. Drupal is fairly secure out of the box, but as new technology emerges with HTML5, site maintainers must keep up.

This module:

• Allows you to move your administration panel from /admin to /something-else. This is done by modifying the menu entries, not simply by rewriting URL's on input and output.
• Manage Javascript sources to minimize the risk of Cross Site Scripting (XSS) attacks
• Hash passwords client side
• More to come...

Change URL of administration panel

Move all of the administration panel URL's from admin/something to secret/something. This prevents attackers from targeting vulnerable admin pages because the location does not exist. Note that enabling this module will cause issues with core's Toolbar module. The majority of links will be removed from the menu because the Toolbar module specifically looks for URL's with the path admin/% when building the menu. These paths do not exist and therefore the menu links are not added. This is not an issue with the Admin Menu module.

Preventing Cross Site Scripting

Implements simple challenge-response authentication. Reduces susceptiblity to replay attacks. last release was 4.5

Allows users to assign role-based viewing and editing permissions for nodes. This module has a couple of different objectives from other node permissions modules.