Panel of experts

Amanda Giovanni, Director of Enterprise Risk Management of CommonPlaces, Erich Breyrent, VP of Engineering of CommonPlaces, Matthew Nash, Cyber Security Consultant of Katalyst Strategies, and Arian Evans of Whitehat, will present findings from the third quarter 2008 Web Application Security Statistics Report.

Based on real-world data from thousands of Web application assessments, The presentation will provide a look at the top vulnerabilities that attackers are exploiting to steal corporate and customer data from public and intranet websites.

Join us for a real life examples and a panel discussion around CSRF with Amanda Giovanni, Director of Enterprise Risk Management of CommonPlaces, Erich Breyent, VP of Engineering of CommonPlaces, Matthew Nash, Cyber Security Consultant of Katalyst Strategies, and Arian Evans of Whitehat.

Overview

A panel discussion, that walks through the countries in the region and makes a short sum up of the current community status: the events that are being organized, the localized resources, the member bases and the events that will be hold in the near future.

Agenda

Goals

Get an overview of the "state of Drupal" in Central Europe. Open a dialog between the different communities that might lead to concerted efforts to grow Drupal.

Resources

An interest in growing Drupal.

If you are interested in being part of this panel, please send me a message using my contact form.

Overview

The panel will discuss their experiences producing the last several Drupalcon conferences (Boston, Szeged).

Topics include

* Effort level description
* Budgeting
* Venue selection & infrastructure logistics
* Attendee travel logistics
* Event website; registrations / commerce
* Session proposal management
* And other topics

Resources

The presenters will likely need a projector for showing PPT/Keynote presentations.

Overview

Drupal is awesome. But that is old news. In this presentation, I will be going over some of the more awesome things people have done with Drupal - you know, those crazy ideas that use Drupal in ways it might not have been really meant to be used in - with varying degrees of success.

Agenda

* The Bot module - a Drupal-based IRC bot.
* The Guitar module - generate guitar chord diagrams using CCK.
* The RickRoll module - I'm still not quite sure what the purpose is.
* Drupal as a gaming framework - tic-tac-toe anyone?
* The Chessboard module - bring chess to your site by simply adding a new input format.
* Your awesome module here - if you maintain an awesome module, share it! :)

Goals

This session will leave you with a strong impression of how powerful and flexible Drupal is as a framework. From IRC bots to tic-tac-toe, Drupal can do anything, and Drupal will clearly take over the world.

Resources

A fresh mind and an enthusiasm for awesomeness.

Overview

The DROP program is an ongoing program that aims at helping people learn Drupal through small, bite-sized tasks that are never too intimidating. This session will discuss the DROP program, including past achievements, future plans, and how you can help and/or participate in it.

Agenda

* Past achievements: what has been done through DROP?
* How can I participate in DROP as a mentor?
* How can I participate in DROP as a student?
* Where is the DROP program going in the future?

Goals

You should leave this session knowing what the DROP program is and how to participate in it. As a result, the DROP program should receive a boost of attention and effort, and many new Drupallers will have an easier time learning Drupal.

Resources

http://drop.cwgordon.com/

Overview

Tuning the Drupal stack continues to be an exciting combination of science and art. New options for cloud computing and infrastructure services like content distribution networks allow performance load to be distributed. The art of offering your users the right combination of features without creating a performance impact is a design challenge.

Agenda

* Performance tuning the Drupal stack
* Tuning images, CSS, Javascript for front end optimization
* Outsourcing your performance load
* Performance load testing
* Scalable architectures for peak loads
* Performance improvements in Drupal 6 and Drupal 7

Goals

The goal of this session is to learn best practices from a panel Drupal performance experts. We will review the latest tools, techniques, and architectures for ensuring your Drupal site stays fast and can scale under a variety of of loads.

Resources

http://groups.drupal.org/high-performance
http://groups.drupal.org/node/12823

Overview

The Drupal association is non-profit organization that provides support for the Drupal community via events such as Drupalcon, marketing of Drupal, and support for Drupal.org.

Agenda

* Update on Drupal.org improvements
* Discussion about Drupalcon North America 2008
* Legal update from Bert and Larry
* Marketing from Kieran
* Drupal association permanent members elections Jan 2009

Goals

The purpose of this meeting is to share progress in supporting the Drupal community and to learn about emerging issues in the community that need support.

Resources

Bandwidth for remote Drupal association members.

Overview

Drupal 6 includes a simple lazy-loader for page callback functions. Drupal 7 will feature a completely automated introspective code registry, allowing Drupal to skip the most time consuming part of a page request: The bootstrap. But how can you structure your modules to take full advantage of this new world?

Join Larry Garfield (Crell) and chx (chx) to discuss and develop a set of best practices for module design to take optimal advantage of the registry. Expect some discussion of OOP practices as well, since it's Larry and chx. :-)

Agenda

* What the code registry is and why it is. (Larry and chx)
* What the code registry is not. (Larry and chx)
* OK, so how do we use it? (discussion)
* Draw up recommended guidelines to be included in the handbooks.

Goals

You should come away from this session knowing how to speed up your modules dramatically through a simple cut and paste operation. We also intend to have a publishable set of guidelines for all module developers to help them do the same.

Resources

Past discussion and issues:

http://drupal.org/node/146172 (Drupal 6 page callbacks)
http://www.garfieldtech.com/blog/benchmark-page-split
http://drupal.org/node/221964 (the registry issue)
http://www.garfieldtech.com/drupal-7-registry

Overview

Google has shown us that search matters. Drupal's core search has strengths as well as weaknesses. What are they and how are the weaknesses being addressed? What new search options have emerged, and how does one evaluate them?

Agenda

* Core search in Drupal 7: What needs to be done?
* Minnesota Search Sprint: What got accomplished and where does it go from here?
* Xapian, Sphinx and ApacheSolr: With so many third-party options to choose from, how does one evaluate and decide?
* Search and Drupal.org: What special needs does Drupal.org have, and how can we improve things now and in the future?

Goals

Increase focus on improving core Drupal search. Increase awareness of alternative solutions. Increase awareness of different search features, such as faceted searching. Encourage more collaboration amongst developers.

Resources

* http://drupal.org/project/apachesolr
* http://drupal.org/project/xapian
* http://www.sphinxsearch.com/
* http://groups.drupal.org/node/4102 (Search group on g.d.o.)