Top
Welcome

The Ruby on Rails Security Project wants to make Rails (applications) more secure. Heiko Webers of bauland42 writes blog posts about Rails and security related topics and carries out security audits for your web applications. We have a free book for you, too. Contact Heiko at 42 -the AT sign- bauland42.de.

Search

Feeds / Syndication
Most Popular
« New RedCloth security | Main | SQL Injection issue in :limit and :offset parameter »
Friday
10Oct

The updated Rails Security Guide

DateFriday, October 10, 2008 at 4:23PM

I'm taking part in the Rails Guide Hackfest which is "an attempt to improve Rails documentation and make the barrier to entry as low as possible."

You can take a look at it here: http://guides.rails.info/securing_rails_applications/security.html

If you find a typo or if you'd like to contribute, the Lighthouse ticket is here:
http://rails.lighthouseapp.com/projects/16213/tickets/7

AuthorHeiko | Comment1 Comment |

PrintView Printer Friendly Version

EmailEmail Article to Friend

Reader Comments (1)

Thanks a lot for this tutorial! Very useful.

I additionally read comment 8 of [1] to understand why we need a salt for passwords.

Regards,
Peter.

[1]
http://blog.codahale.com/2007/02/28/bcrypt-ruby-secure-password-hashing/

October 12, 2008 | Unregistered Commenterpeter

PostPost a New Comment

Enter your information below to add a new comment.

My response is on my own website »
Author Email (optional):
Author URL (optional):
Post:
 
Some HTML allowed: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>