A week with a Rails Security Strategy: More security, new habits (opens in new tab)

You're getting downvoted because security issues are far from unique to Ruby on Rails. Are you aware of any web frameworks with a pristine security history?

1 more reply

j / k navigate · click thread line to collapse

20 comments

LunaSea10y ago

I didn't even know there was such a thing as "Ruby on Rails Security".

LunaSea10y ago

To the people downvoting me:

- http://www.cvedetails.com/product/22568/Rubyonrails-Ruby-On-...

- http://www.cvedetails.com/vulnerability-list/vendor_id-12043...

evilduck10y ago

Those stats are meaningless without context.

Django: http://www.cvedetails.com/product/18211/Djangoproject-Django...

PHP: http://www.cvedetails.com/product/128/PHP-PHP.html?vendor_id...

JRE: http://www.cvedetails.com/product/19117/Oracle-JRE.html?vend...

.Net: http://www.cvedetails.com/product/2002/Microsoft-.net-Framew...

astrodust10y ago

It's a complicated platform, but on the whole has a very good track record.

Picking on it for having vulnerabilities without providing something in the way of a comparison is not very meaningful.

1 more reply

sanderjd10y ago

You're getting downvoted because security issues are far from unique to Ruby on Rails. Are you aware of any web frameworks with a pristine security history?

1 more reply

j / k navigate · click thread line to collapse