SlideShare is now on Android. 15 million presentations at your fingertips.  Get the app

×
  • Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
 

Ruby on Rails Security

by CEO at Peritor GmbH on Jan 03, 2008

  • 44,849 views

The slides from the 24C3 session "Ruby on Rails Security" by Jonathan Weiss, 30.12.2007. ...

The slides from the 24C3 session "Ruby on Rails Security" by Jonathan Weiss, 30.12.2007.

Even though Ruby on Rails introduces a lot of best practices to the developer, it is still quite easy for an imprudent programmer to forget that every web application is a potential target. Web application attacks like Cross Site Scripting or Cross Site Request Forgery are very popular these days and every Rails developer should have an idea about the different possibilities that his application presents to an attacker.

This talk will cover most of the common web application vulnerabilities like Cross Site Scripting and Cross Site Request Forgery, SQL and Code injection, and deployment security and how they apply to Rails. Further Ruby on Rails specific issues like Rails plugin security, JavaScript/Ajax security, and Rails configuration will be examined and best practices introduced.

Statistics

Views

Total Views
44,849
Views on SlideShare
41,935
Embed Views
2,914

Actions

Likes
91
Downloads
1,707
Comments
8

53 Embeds 2,914

http://blog.innerewut.de 2100
http://www.informatik-student.de 299
http://weijing329.blogspot.tw 74
http://techvideos.humourbox.info 66
http://0.0.0.0 55
http://weijing329.blogspot.com 50
http://www.slideshare.net 50
http://blog.peritor.com 42
http://localhost 39
http://www.planetrubyonrails.org 35
http://weijing329.wordpress.com 24
http://10.10.10.5 12
http://agileweb.org 6
http://planetrubyonrails.org 5
http://presentacion.org 4
http://mergejil.blogspot.com 4
http://weijing329.blogspot.hk 4
http://seekr-artemis.heroku.com 3
http://static.slideshare.net 2
http://guardrobots.com 2
http://mp3songsdownload.org 2
http://antiagingservice.com 2
http://quantumcomputernews.com 2
http://www.alabama-courtrecords.info 2
http://brentwoodtnhomesforsale.org 2
http://www.web-investigator.info 1
http://web.archive.org 1
http://zip-offenders.info 1
http://weijing329.blogspot.ca 1
http://www.health.medicbd.com 1
http://www.slidecoaching.com 1
http://weijing329.blogspot.sg 1
https://bb-mercy.blackboard.com 1
http://florida-courtrecords.info 1
http://virginia-courtrecords.info 1
http://safe.tumblr.com 1
http://209.85.135.104 1
http://hugobarauna.blogspot.com 1
http://lj-toys.com 1
http://sobiegraj.com 1
http://s3.amazonaws.com 1
http://www.cwalsh.org 1
http://www.filescon.com 1
http://www.easyrapidshare.com 1
http://3dvirtualenvironments.com 1
http://babyinformation.info 1
http://www.babyinformation.info 1
http://3-dweb.com 1
http://japaneserobots.org 1
http://pianostorehelper.com 1
More...

Accessibility

Categories

Upload Details

Uploaded via SlideShare as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel

18 of 8 previous next Post a comment

  • lovelyqureshi lovelyqureshi What a great slide! We're looking at message broker solutions right now ... you a top candidate!
    http://www.mediafire.com/download/kx9l74xfsn96454/
    3 months ago
    Are you sure you want to
    Your message goes here
    Processing…
  • afefy Afefy Gad It is quite interesting and fu 1 year ago
    Are you sure you want to
    Your message goes here
    Processing…
  • scambaiting Caroline Rose, seo at seg clear information.thanks for your slide share.
    hope will get more slides from you!!http://scambaitings.blogspot.com/
    3 years ago
    Are you sure you want to
    Your message goes here
    Processing…
  • flages flages Very very interesting and usefull! 6 years ago
    Are you sure you want to
    Your message goes here
    Processing…
  • prasad_deshmukh prasad_deshmukh excellent 6 years ago
    Are you sure you want to
    Your message goes here
    Processing…
  • jweiss Jonathan Weiss, CEO at Peritor GmbH There is even a video at http://blog.innerewut.de/2008/1/3/24c3-ruby-on-rails-security 6 years ago
    Are you sure you want to
    Your message goes here
    Processing…
  • jboutelle Jonathan Boutelle, Director of Technology at SlideShare I would LOVE to have audio for this presentation! Any chance? ;-> 6 years ago
    Are you sure you want to
    Your message goes here
    Processing…
  • Soumia Soumia Vadakkedath, Assistant at Sbi It is quite interesting and fun 6 years ago
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

Ruby on Rails Security Ruby on Rails Security Presentation Transcript