The Book


As part of our effort to make Ruby on Rails applications known for its good security, I have written a compact-style book. I believe that making Rails applications more secure, can't be done solely by implementing security features in the framework, but also by educating the community. Therefore I heavily rely on your comments. Moreover, I'd like to encourage you, to send me proposals for new or updated sections, preferably written out in full. Please send it to 42 -AT- Thanks.

Note: The book is made available to the community completely free of charge. You may read it, send it to your colleagues and link to this page from your blog. Conditions:

Attribution. You must attribute the work and keep the original copyright notice.

Share — You are free to copy, distribute and transmit the work.

Remix — You are free to adapt the work.

Noncommercial. You may not use this work for commercial purposes.


If you like the book, you can recommend me.
You might also consider a Ruby on Rails security audit by me.