Free eBook “Ruby on Rails Security” from Ruby on Rails Security Project. The last security guide for Rails was a great success, with a lot of more secure web applications and continued awareness in the community of security issues. The Ruby on Rails Security Project is the one and only source of information about Rails security topics.
Book Description
The Guide and the Project has been mentioned in several Rails books and web-sites. A lot has changed since the publishing of the first Guide. Some new security holes have been found, there are new advises and most importantly Rails version 2.0 has been released. The new Ruby on Rails Security Guide aims at providing an up-to-date coding and configuration guide for the Rails community. For more information, please check out the project home page at OWASP Ruby on Rails Security Guide V2.
Table of Contents
- Sessions
- Cross-Site Reference Forgery
- Redirection and Files
- Intranet and Admin security
- Mass assignment
- User management
- Injection
- Secure MySQL
- Server Monitoring