The Ruby Rogues

The Ruby Rogues podcast is a panel discussion about topics relating to programming, careers, community, and Ruby. We release a conversation with notable programmers and Rubyists each week to help programmers advance in their careers and skills.

Subscribe

Get episodes automatically

328

RR 328: Rails Security Beyond the Defaults with Matias Korhonen


Matias Korhonen has been writing Rails apps professionally at Kisko Labs, a Rails-focused software consultancy in Finland, for almost a decade. In his spare time he works on too many side projects (including Piranhas.co), a book price comparison site, and TLS.care (an SSL certificate monitoring service). He also somehow manages to find time to homebrew beer.

The Rogues talk to Matias about securing your Rails applications. Rails comes with a lot of security features built in, but you can still leave yourself open to exploitation if you're not careful. Most of these problems occur in the portion of the app your write as opposed to the parts of the app that Rails handles for you. We go over several tools and techniques for making sure your application, access, and data are all secure.

In particular, we dive pretty deep on:

  • Tools that you can use to scan for vulnerabilities or add more security checks to your applications
  • Authentication and authorization mistakes
  • Securely managing data
  • and much, much more…

Links:

Picks:

Brian:

Eric:

Dave:

Chuck:

Matias:

This episode is sponsored by

comments powered by Disqus
x