I'm an experienced programmer, but new to Rails.
I would like to echo an unanswered question I've recently read elsewhere.
Can any recommend an overview of get/post, cookies, sessions, etc., and how Ruby on Rails interacts with all of this?
I'm interested in understanding how to harden a Rails application
Regards
Read “Agile Development with Rails” by the God of Rails, David Heinemeier Hansson. Or anything he has written. Doesn’t get any better.
I would start by reading the HTTP RFC(s).
Dave English wrote:
I'm an experienced programmer, but new to Rails.
I would like to echo an unanswered question I've recently read elsewhere.
Can any recommend an overview of get/post, cookies, sessions, etc., and how Ruby on Rails interacts with all of this?
I'm interested in understanding how to harden a Rails application
Do you need to? The framework already plugs a lot of common loopholes (provided the app doesn't do stupid things). See if Rails is already doing what you need.
Also check out http://www.rorsecurity.info .
Regards -- Dave
Best,
Read "Agile Development with Rails" by the God of Rails, David Heinemeier Hansson. Or anything he has written. Doesn't get any better.
Thanks, yes I've read chapter 26: Securing Your Rails Application.
I would start by reading the HTTP RFC(s).
Yes
Dave English wrote:
I'm interested in understanding how to harden a Rails application
Do you need to? The framework already plugs a lot of common loopholes (provided the app doesn't do stupid things). See if Rails is already doing what you need.
Of course
Also check out http://www.rorsecurity.info .
Thanks
I've now downloaded the book, too
http://www.owasp.org/index.php/File:Owasp-rails-security.pdf
Regards