All database-driven sites need to be maintained to prevent security breaches. Some of the most basic provisions protect CMS sites, such as changes to file permissions, and deletion of the username 'admin'. Over recent years there have been increasing numbers of malicious attacks on sites ( including Drupalgeddon and denial of service attacks).
We are currently working on a site for a new company which is renting restored vintage caravans. The site allows users to view plans of the caravans, with a modal pop-up enabling them to view the availability of each caravan. The site is designed in Drupal allowing the site owner to add his Blog, and to edit content to add new vans to his stock as restoration is completed