[oplinwebkits] URGENT: Read carefully, please

[Laura Solomon]

Hello, 

Last night , Drupal (the system that runs the Website Kit websites) announced that a critical security vulnerability, that we did patch earlier this month, may still have affected Drupal webservers and/or websites. We are currently working on diagnosing any potential issues, and we (thankfully) have the ability to roll things back prior to the flaw (prior to October 15th ). It is likely that we will need to do a restore from that time. Please do the following, immediately: 

1) Please cease ALL updating or changing of your library's website. 
2) If you have added new content since the 15th, please make copies of it so that you can easily re-create it, if necessary. 

If it turns out that we indeed need to restore your website to its October 15 version, we will notify you and let you know when you can begin the process of re-creating the website changes you made as of October 15. 

We realize this is very inconvenient; unfortunately, this problem is affecting nearly all Drupal websites, not just OPLIN's, and many of them will have no recourse but to rebuild their entire websites from scratch because they do not have adequate backups. OPLIN has pre-vulnerability backups, so that our sites will not have to be rebuilt from the ground up. 

We will keep you updated as we know more, and thank you for your patience as we work to keep your sites as safe as possible. 

Laura 

-- 

Laura Solomon, MCIW, MLS 
Library Services Manager , Ohio Public Library Information Network (OPLIN) 
(614) 728-5252 (voice) | (614) 728-5256 (fax) 
laura at oplin.org | http://www.oplin.org/ 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.oplin.org/pipermail/oplinwebkits/attachments/20141030/4150482e/attachment-0001.html>