[kwlug-disc] Drupal core - Highly critical - Remote Code Execution - SA-CORE-2018-002
Khalid Baheyeldin
kb at 2bits.com
Sun Apr 1 19:35:10 EDT 2018
On Sun, Apr 1, 2018 at 2:11 PM, Ronald Barnes <ron at ronaldbarnes.ca> wrote:
> Khalid Baheyeldin wrote on 2018-04-01 09:38 AM:
>
> I forgot to mention the most basic thing of Drupal security updates:
>>
>> * Enable the 'Update manager' module (part of Core)
>> * Configure it for 'Daily checks'
>> * Enter an email address to notify when new versions are found
>> * Set it to notify 'Only security updates', so you don't get bothered
>> by non-security stuff
>>
>
> Thanks Khalid. I had all the above set (except the last item - wasn't
> aware of it), and you still brought the latest issue to my attention before
> the daily check did.
>
> Updated immediately, all seems good.
Subscribing to the mailing list has the one advantage of being warned ahead
of time of serious issues, like the issue from last Wednesday.
Apart from that, the above list covers it all, and will keep you up to date
with all that needs to be updated.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20180401/fd366d36/attachment.htm>
More information about the kwlug-disc
mailing list