An All New Rails Security Guide
Hot off the back of the Rails Guides hackfest came a lot of great new Rails documentation. Now joining that documentation comes an all new Ruby on Rails Security Guide. Clocking in at almost 11,000 words, the guide covers RJS injection, cookie store session replay attacks, session hijacking, File upload security, mass assignment of attributes, CAPTCHAs, SQL injection, and more.
The Ruby on Rails Security Project blog has also begun to update a bit more, so if Rails' security is of prime importance to you, get over there too, and perhaps even the Ruby on Rails Security group on Google Groups.
Support from: 1st Easy offers UK Rails hosting (dedicated and shared) running Phusion Passenger (mod_rails) and LAMP stack. If you want to get to know us first, or simply want to evaluate the performance of your Rails applications running on Passenger, we'll arrange a trial hosting account for you (full technical support included!)