New to Rails 3? Check out the Ruby on Rails 3 Tutorial book and screencast.

A book and screencast series showing you how to develop and deploy industrial-strength Rails apps in a direct, step by step way. The screencast series includes 12 lessons over more than 15 hours! Get the best "over the shoulder" experience of following what a top Rails 3 developer does when building an app today. Click here to learn more.

An All New Rails Security Guide

By Peter Cooper — October 17th, 2008 — 1 Comment

In Documentation, Miscellaneous

session_fixation.png

Hot off the back of the Rails Guides hackfest came a lot of great new Rails documentation. Now joining that documentation comes an all new Ruby on Rails Security Guide. Clocking in at almost 11,000 words, the guide covers RJS injection, cookie store session replay attacks, session hijacking, File upload security, mass assignment of attributes, CAPTCHAs, SQL injection, and more.

The Ruby on Rails Security Project blog has also begun to update a bit more, so if Rails' security is of prime importance to you, get over there too, and perhaps even the Ruby on Rails Security group on Google Groups.

Support from: 1st Easy offers UK Rails hosting (dedicated and shared) running Phusion Passenger (mod_rails) and LAMP stack. If you want to get to know us first, or simply want to evaluate the performance of your Rails applications running on Passenger, we'll arrange a trial hosting account for you (full technical support included!)

Post to Twitter Tweet This Post

Vaguely Related Posts (Usually)

One Comment Response to “An All New Rails Security Guide”

  1. #1
    Subbu Says:
    October 18th, 2008 at 3:36 am

    Hats off to all these guys. These guides are really high quality stuff.

Leave a Reply

Previous Post: Meaningful URLs
Next Post: Rails 2.0.5: A security release