Welcome to the Treehouse Community

Want to collaborate on code errors? Have bugs you need feedback on? Looking for an extra set of eyes on your latest project? Get support with fellow developers, designers, and programmers of all backgrounds and skill levels here with the Treehouse Community!

Looking to learn something new?

Treehouse offers a seven day free trial for new students. Get access to thousands of hours of content and join thousands of Treehouse students and alumni in the community today.

Start your free trial

Ruby

arjun menon
arjun menon
903 Points
Posted by arjun menon
arjun menon
903 Points

RAILS SECURITY

considering d simplicity of d application, what all security measures need to be implemented to d app. der was dis latest vulnerability dat was found:

http://weblog.rubyonrails.org/2013/3/18/SEC-ANN-Rails-3-2-13-3-1-12-and-2-3-18-have-been-released/

  1. how does dat affect d app created or while extending functionality wat needs to b kept in mind.

  2. also, der is dis <authenticity_token> hidden field in d signup and login pages, is dat enuf against captcha and other security measures?

  3. how do u scan user uploaded content and links for security threats

  4. in general, what other measures need to b adopted.

3 Answers

Chad Shores
PLUS
Chad Shores
Courses Plus Student 8,868 Points
Chad Shores
Chad Shores
Courses Plus Student 8,868 Points

I can't read your post because of some dialect or typos or something, BUT, I've heard that Breakman is pretty cool Ruby Gem that checks for security vulnerabilities

arjun menon
arjun menon
903 Points
arjun menon
arjun menon
903 Points

dats a cool resource for testing applications. but to enhance d security of d application wat all measures need to b taken?

Chad Shores
PLUS
Chad Shores
Courses Plus Student 8,868 Points
Chad Shores
Chad Shores
Courses Plus Student 8,868 Points

It depends on the app, you will have to test it.