I'm an experienced programmer, but new to Rails.
I would like to echo an unanswered question I've recently read
elsewhere.
Can any recommend an overview of get/post, cookies, sessions, etc.,
and how Ruby on Rails interacts with all of this?
I'm interested in understanding how to harden a Rails application
Regards
Read “Agile Development with Rails” by the God of Rails, David Heinemeier Hansson. Or anything he has written. Doesn’t get any better.
I would start by reading the HTTP RFC(s).
Dave English wrote:
I'm an experienced programmer, but new to Rails.
I would like to echo an unanswered question I've recently read
elsewhere.Can any recommend an overview of get/post, cookies, sessions, etc.,
and how Ruby on Rails interacts with all of this?I'm interested in understanding how to harden a Rails application
Do you need to? The framework already plugs a lot of common loopholes
(provided the app doesn't do stupid things). See if Rails is already
doing what you need.
Also check out http://www.rorsecurity.info .
Regards
--
Dave
Best,
Read "Agile Development with Rails" by the God of Rails, David Heinemeier
Hansson. Or anything he has written. Doesn't get any better.
Thanks, yes I've read chapter 26: Securing Your Rails Application.
I would start by reading the HTTP RFC(s).
Yes
Dave English wrote:
I'm interested in understanding how to harden a Rails application
Do you need to? The framework already plugs a lot of common loopholes
(provided the app doesn't do stupid things). See if Rails is already
doing what you need.
Of course
Also check out http://www.rorsecurity.info .
Thanks
I've now downloaded the book, too
http://www.owasp.org/index.php/File:Owasp-rails-security.pdf
Regards
Keep up to date with Rails on Twitter and This Week in Rails
Policies: Conduct, License, Maintenance, Security, Trademarks