Databases
StackOverflow2013
Postsdbo
PO
Body
 

Note that there are some explanatory texts on larger screens.

plurals
  1. PO
    text
    copied!<p>Let's look at a fairly customized page based on Drupal: <a href="http://gemini-lights.com/" rel="nofollow noreferrer">http://gemini-lights.com/</a> (a random page from the <a href="http://drupal.org/case-studies" rel="nofollow noreferrer">Drupal sites repository</a>). There are many giveaways:</p> <ul> <li>if you change www.example.com/link/link2 to www.example.com/?q=link/link2 and it still works and points to the right page</li> <li>www.example.com/user/1 gives you a profile page</li> <li>resources (imgs, css, etc) are in /sites/all|example.com/themes/ or sth similar</li> <li>there are CSS classes applied to many key elements of the site (like <code>body</code>) that do not change appearance - Drupal uses them to provide some info about the state of the page (like <code>&lt;body class="front not-logged-in page-front-page two-sidebars"&gt;</code>)</li> <li>probably many others</li> </ul> <p>My advice is: don't try too hard with hiding the CMS of your website, if a hacker wants to find out what CMS you are running, he/she will find out. I'd focus on keeping the CMS up-to-date (Drupal makes this easy) and also watching out which modules you are installing - <em>they</em> are the most likely attack vectors.</p> <hr> <p>Since this question is still getting many hits, let me update it with an example of a website of a major company (one of the biggest telephone companies in Poland), that, to my (pleasant) surprise ,is using Drupal for its main site, <a href="http://dialog.pl/" rel="nofollow noreferrer">http://dialog.pl/</a>:</p> <ul> <li>The usual giveaway pages like /user/1, /login, etc. redirect to main page, so you can see the creators of the site have done their homework ;)</li> <li>...but the source of the page contains my favourite give away: the usage of the zen theme: urls like <code>/sites/all/themes/zen-dialog-main-page/../zen/css/page-strona_glowna.php</code> or CSS styles applied: <code>&lt;body class="front not-logged-in node-type-page two-sidebars"&gt;</code></li> <li>One more give away is the <a href="http://dialog.pl/update.php" rel="nofollow noreferrer">update.php</a> page that has the familiar Garland theme (props to <a href="https://stackoverflow.com/questions/1516599/give-away-signs-that-a-site-is-drupal/2505206#2505206">Kevin</a> for this one). </li> </ul> <p>As you can see, it's still possible to tell that the website is using Drupal - and this is a website of a major corporation. So the above advice still holds: don't waste your resources on trying to hide the CMS you used, keep it up to date (that's why the update.php file is probably still in place), monitor security vulnerabilities, use strong passwords, etc. </p>
 

Querying!

 
Guidance
An individual column

Larger individual text columns get their own page to allow for proper reading.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload