Varbase Security Base
The Varbase Security Base recipe provides a hardened security configuration for Varbase sites, including password policies, spam prevention, login protection, and security headers.
Drupal.org Project
https://www.drupal.org/project/varbase_security_base
Included Modules
Brings in the following core and contributed modules to your site:
Provides the CAPTCHA API for adding challenges to arbitrary forms.
Protect your website from spam and abuse while letting real people pass through with ease.
Mitigates spam form submissions using the honeypot method.
Prevent forms from being submitted without JavaScript enabled.
Sets up constraints and expiration of passwords.
Minimum number of different character types the password must contain.
Minimum characters of a particular type the password must contain.
Sets up a password constraint to limit repeated use of the same password.
Sets up a character length constraint for passwords.
Restrict users from having their username in their password.
Enhance security of your Drupal website.
Removes the error message produced by the forgot password form, when an invalid user has been supplied.
Allows configuring hidden flood control options and unblocking IP addresses and user ID's that are blocked after multiple failed login attempts.
Installation
Apply the recipe using Drush:
This recipe is automatically applied when using the Varbase Starter recipe.
Last updated