Drupal Security Considerations

  • Faculty & Staff
  • Visitors & Others

Drupal is a robust content management system (CMS) written in PHP that uses a MySQL database. Drupal allows users to quickly deploy new dynamic websites and enables those sites with many powerful features, such as internal searching, user accounts, blogs, tag clouds, and other emerging web technologies. There are, however, significant security concerns with Drupal sites. The Information Security and Unix Systems (ISUS) group supports Drupal installations but special care should be taken to review our configuration and security guidelines both before and during site development.