http://drupal.org/node/1024972 for details.
"These are security things that need to go in before the lock. So commit with my OK." jasper@, maintainer timeout.
This module allows users with proper permissions to upload images into
Drupal. Thumbnails and additional sizes are created automatically.
Images could be posted individually to the front page, included in
stories or grouped in galleries.
Image module ships with several add-on modules: Image Gallery, Image
Attach, Image Import and ImageMagick Advanced.
ok landry@
This module adds PHP-based password strength checking and validation
routines that mirror the jQuery routines, so that administrators can
restrict passwords to only be, for example, "high" strength. The module
simply modifies existing password confirm fields (where two passwords
are entered, like the user edit form), so no other setup is required
beyond configuring the desired enforcement rules.
ok landry@
is a configuration file, even though it's buried deep in code
directories. Pointed out by Tobias M. Boelz <tmb at usta dot de>.
Thus, use @sample and bump.
OK espie@ stephan@
fixes a session reuse issue even though this release has not been tagged
as 'security relevant'. Details at http://drupal.org/node/967244.
Make sure you upgrade all files while you're logged in (or have access
to settings.php) otherwise you'll lock yourself out pretty easily, in
case you use Captcha for logins. Database upgrade required, too.
- install drupal modules/themes as root:daemon rather than www:www
(only the files/ directory needs to be writeable by 'www').
- don't install 'settings.php' world-readable since it contains the
DB password. Use 640, owner 'www' instead.
- bump all modules.
tested in production, including upgrade szenarios.
ok sthen@ and landry@, maintainer timeout.
This group of modules is sort of a recipe module that makes things
easier by showing how to integrate some other modules as well as
providing miscellaneous features that aren't distributed by Views
itself. Sometimes these modules are only base recipes that will
need to be themed and spiced up to fit your needs.
Ubercart is an e-commerce suite developed for Drupal. It has been
designed with the end user in mind, focusing on usability in three key
areas: store configuration, product and catalog creation, and order
administration. On the front end, all major systems are configurable and
integrate with the standard Drupal systems (node, taxonomy, user, etc.).
On the back end, the settings pages and order administration pages have
been designed with ease of use in mind.
The Frequently Asked Questions (faq) module allows users, with
appropriate permissions, to create question and answer pairs which
they want displayed on the 'faq' page. The 'faq' page is automatically
generated from the FAQ nodes configured.
The Session API is a very simple set of functions that extend the core
sessions workings, allowing data to be stored and associated with a
user's session.
The Link checker module extracts links from your content when saved and
periodically tries to detect broken hypertext links by checking the
remote sites and evaluating the HTTP response codes. It shows all broken
links in the reports/logs section and on the content edit page if a link
check has been failed. An author specific broken links report is also
available in "My Account".
Provides a central transliteration service to other Drupal modules, and
sanitizes file names while uploading. Generally spoken, it takes Unicode
text and tries to represent it in US-ASCII characters (universally
displayable, unaccented characters) by attempting to transliterate the
pronunciation expressed by the text in some other writing system to
Roman letters.
In simple use cases the search_config module allows site admins to
decide which fields to display on the advanced search form when enabled.
There is also the option of excluding node types from search results.
Once selected they are also automatically removed from the advance
search form. This gives more control over the content that can be
searched to those who need it.
On 404 Not Found error pages, Drupal will skip rendering of several
pieces of your website for performance reasons. This module simply
revives those features on 404 pages to show lost users how to get
to real pages.
This module provides two ways of referencing relevant content. Both of
these methods provide configuration to filter for specific content types
and vocabularies, limit the maximum size of the result and provide some
header text. The result on both cases are a list of nodes which the
module considers most relevant based on the categorization of the
current page. This is achieved by finding other nodes which are of one
of the allowed types and have the most number of terms in common.
This module enables you to make the Menu Settings required on specific
content types. It forces a node from one or more content types to be
included in the menu system before the content will be saved
successfully. This can be useful in a number of situations, e.g. when
using [menupath-raw] in the Pathauto settings, which expects a node to
live within the menu system.
The Override Node Options module allows permissions to be set to each
field within the Authoring information and Publishing options field
sets on the node form. It also allow selected field sets to be set as
collapsed and / or collapsible.
This module allows you to grant access for specific user roles to view
unpublished nodes of a specific type. Access control is quite granular
in this regard. Additionally, using this module does not require any
modifications to your existing URL structure.
Used in concert with the Override Node Options module, you can give
specific roles the ability to publish/unpublish certain node types
without giving those roles administrative access to all nodes.