Encrypted Drupal Database Connections with Amazon RDS
drupal security aws
Malicious users can intercept or monitor plaintext data transmitting across unencrypted networks, jeopardising the confidentiality of sensitive data in Drupal applications. This tutorial will show you how to mitigate this type of attack by encrypting your database queries in transit.
Securing Drupal: Storing API Tokens in Lockr
As seen in the recent Uber hack, storing secrets such as API tokens in your project repository can leave your organisation vulnerable to data breaches and extortion. This tutorial demonstrates a simple and effective way to mitigate this kind of threat by leveraging Key module to store API tokens in remote key storage.
Speaking at DrupalSouth 2017 in Auckland
drupalsouth drupal conferences
I'll be giving an introduction to secret management, and a number of recipes to leverage amazing tools like Hashicorp Vault in your Drupal projects.
Accessing and using Drupal.settings properties in Selenium tests
selenium drupal testing
A quick-and-dirty method for assigning Drupal.settings properties into Selenium variables.