[Noisebridge-announce] Rails class 3/26: Rails Security Basics

[Gabe Kopley]

Hi, Noisebridge! We added a new class at  7pm on March 26, 2013

Rails Security Basics

How to protect your Rails app from the most common attacks 

[![Exploits of a Mom (XKCD)](http://imgs.xkcd.com/comics/exploits_of_a_mom.png "Her daughter is named Help I'm trapped in a driver's license factory.")](http://xkcd.com/327/)

Suggested reading  
[Common Security Mistakes in Web Applications](http://coding.smashingmagazine.com/2010/10/18/common-security-mistakes-in-web-applications/)  
[Rails Vulnerabilities: Learning The Lesson](http://homakov.blogspot.com/2013/02/rails-vulnerabilities-learning-lesson.html)

Helpful reference  
[Ruby On Rails Security Guide](http://guides.rubyonrails.org/security.html)

More interesting stuff  
[Slides "Rails & Security" from Devconf, Moscow](http://homakov.blogspot.com/2012/06/slides-rails-security-from-devconf.html)  
[Whitelist Your Routes, "match" is Evil](http://homakov.blogspot.com/2012/04/whitelist-your-routes-match-is-evil.html)  
[Injects in Various Ruby Websites Through Regexp.](http://homakov.blogspot.com/2012/05/saferweb-injects-in-various-ruby.html)  
[Rails is [Fr]agile. Vulnerabilities Will Keep Coming.](http://homakov.blogspot.com/2013/01/rails-is-fragile-vulnerabilities-will.html)

I'll post a Google hangout link in the Whiteboard at 7pm.


RSVP here: http://www.railsschool.org/l/rails-security-basics
May The Force Be With You!

Best regards,
Rails School, http://www.railsschool.org


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.noisebridge.net/pipermail/noisebridge-announce/attachments/20130321/80d3cb61/attachment-0003.html>