Stanford Sites Policies
Automated scanning tools
The use of automated scanning tools (Qualys, accessibility scanners like SiteImprove or LevelAccess, link checkers, etc.) on production websites hosted on Stanford Sites Drupal CMS is not permitted. Stanford Sites is a shared environment with traffic limitations set by the vendor; automated scanning tools can sometimes create high traffic events and impact all websites hosted on the service.
Instead, Stanford Web Services can set up a test-only version of your site for this purpose. If you are interested in utilizing these tools in a test/dev version of your site, please contact us directly for assistance.
Security on Stanford Sites
According to Stanford data risk classifications, this service is not rated for high-risk data.
The Stanford Sites platform follows the minimal security standards for applications and platform of the service outlined here:
- Stanford Security Standards for Applications
- Stanford Security Standards for Softwares as a Service (SAAS)
Please refer to these policies for additional guidance: