Comments on: Enterprise Blogging in Drupal http://incsub.org/blog/2004/enterprise-blogging-in-drupal Thu, 04 Feb 2010 12:15:39 +0000 hourly 1 http://wordpress.org/?v=3.1.3 By: Podcast 2004-11-25 at D’Arcy Norman Dot Net http://incsub.org/blog/2004/enterprise-blogging-in-drupal/comment-page-1#comment-6982 Podcast 2004-11-25 at D’Arcy Norman Dot Net Tue, 20 Dec 2005 15:45:44 +0000 http://incsub.org/blog/?p=80#comment-6982 [...] James Farmer: Enterprise Blogging in Drupal [...] [...] James Farmer: Enterprise Blogging in Drupal [...]

]]> By: James Farmer http://incsub.org/blog/2004/enterprise-blogging-in-drupal/comment-page-1#comment-226 James Farmer Sun, 21 Nov 2004 22:15:13 +0000 http://incsub.org/blog/?p=80#comment-226 It's a shame but not the end of the world as it's meant very much as a site for people who are linkely to register. What I've done is to free up comments to anyone, but if you want to subscribe to a post you have to register. Hoping not to get attacked! Cheers, James It’s a shame but not the end of the world as it’s meant very much as a site for people who are linkely to register. What I’ve done is to free up comments to anyone, but if you want to subscribe to a post you have to register.

Hoping not to get attacked!

Cheers, James

]]> By: charlie http://incsub.org/blog/2004/enterprise-blogging-in-drupal/comment-page-1#comment-225 charlie Sun, 21 Nov 2004 19:42:17 +0000 http://incsub.org/blog/?p=80#comment-225 I don't believe there is any easy way to get subscription to work without registration since the subscription module is configured through the user account and uses the user account email address. However, would probably be a bad idea to hack it and enable it for everyone since it allows someone to subscribe to all nodes. Once your site begins to grow, a bot could easily subscribe multiple times and institute a DoS attack against your site and server. In fact, I believe that the server overhead for mailing out subscriptions is one reason why drupal.org doesn't run it. On a large, busy site, Drupal has to track and mail out subscriptions constantly. Shouldn't be a problem at all for your site. So I'm sure you can see the potential for DoS attacks if the module were enabled for anonymous users. I don’t believe there is any easy way to get subscription to work without registration since the subscription module is configured through the user account and uses the user account email address.

However, would probably be a bad idea to hack it and enable it for everyone since it allows someone to subscribe to all nodes. Once your site begins to grow, a bot could easily subscribe multiple times and institute a DoS attack against your site and server.

In fact, I believe that the server overhead for mailing out subscriptions is one reason why drupal.org doesn’t run it. On a large, busy site, Drupal has to track and mail out subscriptions constantly. Shouldn’t be a problem at all for your site. So I’m sure you can see the potential for DoS attacks if the module were enabled for anonymous users.

]]>