This group serves as the foil for Drupal for Good: a forum for all evil, diabolical, total misuses of Drupal. Think big people. World domination big.
As we march forward in our world domination, feel free to use this forum as a place to post your evil tricks and hacks. Deriding alternative web technologies is welcome and encouraged. We will rule them all. Post evil code snippets, laugh at evil websites, and generally take pleasure in all that is Drupal for Evil.
Muhahahahahahaha!
How can I explain SQL injection without technical jargon?
An interesting question on the Security Stack Exchange, with a clever answer. Give it a look and be more prepared the next time your boss asks you why your code just cost the company two million dollars.
Use git as a database backend for Drupal
First of all, it is possible to use git as a nosql database (althought it is pretty cracked crazy).
See https://speakerdeck.com/u/bkeepers/p/git-the-nosql-database
At the end of the presentation, it is suggested it is a good fit for... CONTENT MANAGEMENT SYSTEMS. Like Drupal :)
What's funny, it solves an actual issue of configuration in database, without the dummy step of "exporting to features". Meh.
Let's do it.
DrupalGamesComp2011 Open for Entries!
As planned, #DrupalGamesComp2011 is now open for entries! You don't need to have completed a game yet, this is mainly just for intent to submit. Just create a user account and submit your entry now!
Note that entries will remain private until August 23, 2011, when judging will begin. You'll be able to view and edit your entries (or delete them) any time before then.
We finally got our own module
A penetration testing module for Aegir:
Announcing OSGameCon 2011
Announcing The First Annual Drupal Open Source Game Contest!
The BOF today was great! We made a couple of minor changes to the base rules. Also, nosro has volunteered to make a simplified version of the rules, so we can plug that in (and click through to the longer "fine print" explanations for more clarification).
Read more
Drupal: The Card Game
I don't even know what to say. My friend sent this to me.
Players start by playing cards representing modules and then build up their own contributions to those modules with points on colored cards representing each player. These are referred to as "patch cards," since developers fix a module by patching its code.
Players must contribute enough patch cards to make a module available to any player to eventually build a website. They can also "own" that module by being its biggest contributor.
Read more
Anyone got more info on yesterday's Views security update?
(http://drupal.org/node/999380 for reference)
The way that I read the description of this update, it only applies to user-generated content - allowing a malicious, logged-in user to post a URL that, if followed by an admin user (though it's not clear what permission exactly defines "admin" in this case), would provide the malicious user with super-user access.
Read moreNon-drupal support for drush_make
From http://drupal.org/node/969076
The evil think is that drush_make can already be used to do this:
core = 6.x
api = 2
projects[drupal][download][type] = "get"
projects[drupal][download][url] = "http://wordpress.org/latest.tar.gz"Evil laugh
Enable a module before drush updatedb runs.. via that module
in mymodule.drush.inc
<?php
/**
* Implementation of drush_hook_pre_updatedb().
*/
function drush_mymodule_pre_updatedb() {
drush_bootstrap_max();
if (!module_exists('mymodule')) {
module_enable(array('mymodule'));
}
}
?>Drupal Guilds & Open Guilds
FYI, I've just submitted a group for Drupal Guilds & Open Guilds, which is a concept that I've been brewing for about a year now (based on discussions and other ideas that have taken a decade or more to gel). I've finally begun writing down some of my ideas for this this summer, and have decided it's time to open the concept for further discussion and debate. Without further ado, here is the elevator pitch for this grassroots organization:
Read moreImplementating hooks in node bodies
enable and configure php module
Create a node, set to php format.
Reset the module implements cache
Implement a hook for a module in node body that the module doesn't implement and that hasn't been invoked yet.
Example:
<?php
module_implements('nodeapi', FALSE, TRUE);
function php_nodeapi(&$node, $op) {
if ($node->nid == arg(1) && $op == 'alter') {
$node->body = "I change the content via php_nodeapi op = alter defined in the node body. >:O";
}
}
?>http://demo.foxinbox.org/node/7
I think that just killed a few kitties...
Bad Judgement Just Got Worse
666 byte patch with a dastardly commit message: http://drupal.org/cvs?commit=374186
The patch is being committed despite the lack of any testing indicating it works, however as Nick Lewis pointed out, there is a known workaround: developers can directly edit the module to make it work.
Drupal 6 Ultimate edition
Hi
I created an April fool's edition of Drupal:
http://pronovix.com/blog/drupal-warez-version-leaked
Good luck to find all jokes :)
Tiny Modal
I recently convinced the rest of my team that big, bulky version control systems are unnecessary, and that the only code repository any team should need is Twitter.com. So here's a module I wrote to prove that any Drupal module worth its snuff can fit into a 140-character post. The module takes any links with the 'm' class and turns them into a kind of modal dialog. (Note that the .module file is the one that's 140 characters, the .info file doesn't count.)
Read moreSweater Module
It happens to the best of us. Winter comes on. The days get shorter, the temperatures start to drop. We all go home at night, put a log in the fireplace, and warm up in our heavy coats and blankets. But what about the less fortunate among us? What about the ones who can't just put on a coat and call it a day? What about... our Drupal sites?
Sweater module was designed to remedy just this problem. Using state-of-the-art sweater processing technology (and a generous donation from the Sweaters 4 Drupal Foundation), we venture to make sweaters available for all of your site's theme regions.
Read more
PHP for evil
This blog author gets honorary membership to our fine group - PHP Advent 2009
We have a Ruby on Rails for Drupal group
This site boasts a Ruby On Rails For Drupal group. Some evil loving admin must have approved that. There I learned about the drake module which integrates CakePHP with Drupal. We must repel these evil invaders.
Lot of sites to manage? Maybe this can help (or you can help with it)
UPDATE Network Manager has been released for 5 6 and 7.
I'm releasing a new module soon and wanted to get some feedback on a screencast that I did. It's a project called the Network Manager (http://drupal.org/project/network_manager) and it helps you manage / maintain your sites all from within one site (given permissions set correctly for mysql user).
Here are links to the screencast (Jing forces it to be in 5 minute segments) --
Part 1 - http://bit.ly/PGu8J
Part 2 - http://bit.ly/yR6Zy
Part 3 - http://bit.ly/BLWrU
Cracking Drupal
Gregg James "greggles" Knaddison has released a book about Drupal security entitled Cracking Drupal. Has anyone here been able to pick up a copy yet?
Barring disastrously negative reviews, I'll probably pick it up. Even if I learn nothing new, there's some value in remembering and reinforcing the basics.
Read more