This link has been bookmarked by 174 people . It was first bookmarked on 21 Sep 2007, by Iecker.
-
21 Nov 11
-
25 Nov 10
-
29 Oct 10
-
21 Oct 10
-
12 Oct 10
-
17 Aug 10
-
12 Mar 10
-
28 Feb 10
-
18 Nov 09
-
15 Sep 09
-
06 Sep 09
-
04 Jul 09
-
04 May 09
Rodrigo de OliveiraIn this article I have described the security issues related to a ruby on rails web application. I have followed DRY by linking to articles with good explanation and solutions to security concerns wherever required. This guide can also be used as a quick
autenticação autorização dica guia how-to rails ruby segurança webapp from_delicious
-
14 Oct 08
-
17 Sep 08
-
16 Jul 08
-
18 Jun 08
-
23 May 08
-
07 May 08
John LiRuby on Rails Security Guide
Ruby on Rails does a decent job in handling security concerns in the background. You will have to configure your application to avoid few security attacks while plugins would be required for many security concerns which are not at all or poorly managed by rails.
In this article I have described the security issues related to a ruby on rails web application. I have followed DRY by linking to articles with good explanation and solutions to security concerns wherever required. This guide can also be used as a quick security check for your current web application.
Table of Contents
Authentication
Model
SQL Injection
Activerecord Validation
Creating records directly from parameters
Controller
Exposing methods
Authorize parameters
Filter sensitive logs
Cross Site Reference(or Request) Forgery (CSRF)
Minimize session attacks
Stop spam on your website from DNS Blacklist
Caching authenticated pages
View
Cross site scripting(XSS) attack
Anti-spam form protection
Hide mailto links
Use password strength evaluators
Miscellaneous
Transmission of Sensitive information
File upload
Secure your setup / environment
Mysql configuration
Use good passwords
Security plugins directory -
30 Apr 08
-
25 Apr 08
-
04 Apr 08
-
11 Mar 08
-
19 Feb 08
-
22 Jan 08
-
13 Jan 08
-
30 Dec 07
-
20 Dec 07
-
14 Dec 07
-
10 Dec 07
-
24 Nov 07
-
20 Nov 07
-
11 Nov 07
-
19 Oct 07
-
11 Oct 07
-
10 Oct 07
-
09 Oct 07
-
08 Oct 07
-
07 Oct 07
-
06 Oct 07
-
03 Oct 07
-
01 Oct 07
-
28 Sep 07
-
27 Sep 07
-
26 Sep 07
Brennan O'KeefeIn this article I have described the security issues related to a ruby on rails web application. I have followed DRY by linking to articles with good explanation and solutions to security concerns wherever required. This guide can also be used as a quick
-
25 Sep 07
-
24 Sep 07
-
23 Sep 07
-
22 Sep 07
-
21 Sep 07
-
paulcowles"In this article I have described the security issues related to a ruby on rails web application."
Would you like to comment?
Join Diigo for a free account, or sign in if you are already a member.