You see, it's not hard to write sensational titles. I never thought I need to write about why keeping up with security patches are important, but apparently, some do not get it and spread their idiocy (I am not naming anyone, you know who you are). It was suggested that most people will find it nonprofitable to keep the website security updated when comparing the upgrade cost with the recovery costs of a hacked website, taking also in account the reputation and losses for the business.. Hint: merely restoring your website does not solve anything -- it's not like a successful attack needs to change anything on your website. As long there is a possibility to inject JavaScript somewhere, your site is open to a number of interesting things which even might lead you finding yourself trouble with the authorities.

TWENTY projects accepted for Drupal for the 2007 version of Google Summer of Code. Two core themes. Three project*module projects, one by none less the industry heavyweight Gábor Hojtsy -- who is not just the php.net webmaster and an editor of the widely acclaimed PHP manuals but a long time Drupal contributor as well (also, he introduced me to Drupal). There will be a BitTorrent tracker written and I would like to see that on drupal.org eventually -- screencasts, presentation videos would benefit of that.

Have you tried to coded some tricky form and failed or nearly failed or it was just too hard? Now is the time to send me such problems, because between April 21-May 1 there will be a form API coding spree -- I will fly to Chicago and spend hours every day with Jeff Eaton on form API.

At the end of the day I met Tao Starbow who has this strange AHAH solution which is really undrupalish code and yet. Eaton, Chad, Earl and myself walked to Earl's car and by the time we got to Sheraton, there was a serious groundwork done. As the evening progressed, we basically decided how dynamic forms will be done, how security is going to be addressed. Basically, there will be a callback (or more than one) where JS can issue something very close to a form alter, get back a themed HTML string and the form array gets stored in cache_forms table.

It was a fun day but a bit tiring. Thanks Yahoo! and Earl for providing space and inspiring environment.

It's so very exciting to work at NowPublic these days. Finally, we are porting to Drupal 5. And, Darrel O' Pry (dopry) is working for NowPublic as of today. I really want to release everything that worths releasing -- in the past this was not really possible because of the slightly outdated codebase. But now, we are flying -- some patches and minor stuff are in CCK and Views already. What will happen now that we have a major CCK person in house... I can't imagine but it's surely very exciting.

I really dig this software. It's also important that their support site runs Drupal and the support lead, Jeff Griffits is a long time Drupal developer. After we exchanged a few mails about Drupal autocomplete, it turns out that Komodo can only handle static includes at this time and 4.1 will be better in this regard. Meanwhile, autocomplete for core is available.

One minor thing -- this cix extension is one letter off :P

I find it quite fascinating that there are now modules to bring in developers who do not want to develop with Drupal. For example if you are in the camp that sneers "lisp's had this for decades" on every possible feature? Then Drupal is for you thanks to the dript project.

You are lured by the hyped frameworks like Ruby on Rails? One of the finest MVC frameworks for PHP 4 and 5 is CakePHP and the drake project bridges it to Drupal.

Bring it on!

There is a fictional dialog at The Dialogs site with Emmy Noether about a couple things of which I would like to point out one: attention. There was something about attention lately -- Laura Scott's recent blog post about how to use open source (and how not to) where she talked of

Because what you want for your website is attention

. Now let's quote from that dialog:

if you grab more public attention today, then someone gets less.

so "it can be easily sold".

A recent news article mentioned PHP implemented in Java and how it's fast and how Drupal runs. We began to discuss this in #drupal and found an earlier blog entry which also mentions the same. The latter also raises the concept of porting Drupal partially to Java.

Things went downhill from that point in the channel. redLED thinks that would lead to "drupal becoming a concept, like 'on rails' :p and gets ported to *".

What is the smallest machine that one could use for Drupal development? Do you need a laptop? No. The Nokia N800 Internet Tablet is enough, or to be more exact, will be enough once SQLite hits core. PHP (with preg and ereg engines and with SQLite) and lighttpd is compiled on maemo (the Linux distribution N800 runs) and they work together nicely. The speed? From very basic benchmarks, it's 5-10 times slower than my 1.1 GHz Intel Celeron M CPU (Intel Core based). So you would not do real webhosting on it, but it is on par or even faster than an Intel Pentium I. Not too shabby from a 200 gram machine...