Chapters

Common security problems

SQL Injection

The problem
How to protect your application
Using arbitrary strings in conditions and SQL statements
Extracting queries into model methods

Cross Site Scripting (CSS/XSS)

The problem
Example of an attack
How to protect your application
XSS attacks using an echo service

Typical mistakes in Rails applications

Creating records directly from form parameters

The problem
The solution

Options

exports
recent changes
rss 2.0 | atom

Authors

Login Signup

1. Common security problems

next chapter »