As per the announcement on Drupal.org, there will be a security update for Drupal 7.x, 8.3.x, 8.4.x, and 8.5.x on March 28th 2018 between 18:00 - 19:30 UTC (11:00 AM PDT to 12:30 PM PDT), that will fix a highly critical security vulnerability.[...]
If you haven't heard by now, Drupal core version 6.X has reached the end of life status as of February 24, 2016. Here we'll provide information on what this means to your Drupal 6 site, and how to move forward. [...]
If you use Drush for Drupal code updates, and find that the latest version of a module or theme is causing issues on your site, you can freeze that module from being upgraded until the issue is resolved with the following simple command: drush up module_name --lock=module_name [...]
Would you hand a stranger the keys to your car with an unlocked briefcase filled with money and personal information open in the back? Probably not. So why would you have an insecure website sit in parking lot with the windows open? Well you probably wouldn't knowingly do that either. Yet virtually every Drupal site we've reviewed has been at least somewhat insecure. One of the primary reasons for this is, Drupal is at least somewhat insecure out of box, especially if your site isn't using the latest version. [...]
Recently we were required to recreate a Facebook-style "Post to Wall" feel for the site's home page view.
Turns out the overlay module can create this nice effect, but you probably don't want to have it in use for all your node add/edits on a busy site, so there's a simple way to disable the overlay module based on paths:[...]