5:33 Play Subscribe with or

Episode #280 - June 12th, 2012

2df14bd29ca441a9d4656f0abae2e0ab.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Gregg Pollack 9c5541e591a62dd93a2fd2d45b5732dd.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Olivier Lacan

Don't get LeakedIn, secure your routes, use your Savon, catch a Tokaido, put your models in a Display Case, and join the Ruby Study Hall.

This episode is sponsored by Code School. Learn by doing with our interactive Courses and weekly CodeTV screencasts for just $25/month.

  • Code School
  • Insecure Passwords
  • Rails Security
  • Savon 1.0
  • Tokaido Update
  • Display Case
  • Ruby Study Hall
  • Ruby5

Insecure Passwords Jump to Story

It’s been a bad week for passwords. LinkedIn, eHarmony, and a bunch of other major sites have been caught with their pants down over the last few months by hackers who exploited some rookie mistakes Many of these breaches were due to password either stored in plain text or not salted when they were hashed. Richard Schneeman from Heroku goes over the basic solutions to increase password security in a Rails app in a great blog post he published a few days ago. He shows how a simple solution like Devise can allow you to turn a database full of unhashed & unsalted passwords into a secure one gradually and without asking users to reset them. Instead of forcing users to change their passwords all at once, he simply waits until a user signs in, checks if they have a legacy insecure password and proceeds to convert their password to the new secure storage offered by Devise.

May 17th, 2013

Today's episode covers a major release for minitest, some JSON standards work, a tutorial on tagging with ActiveRecord and Postgres (plus an arduino to trigger the spray paint can), a RubyMotion tutorial and a little thing called CoVim that will blow your mind.

May 14th, 2013

From multi to native json, JoyBox hits 1.0, ContextValidations and FormObjects, teaching kids at KidsCodeCamp, Plataformatec gems, tab navigation with Tabulous 2 and Git Real 2 online course.

May 10th, 2013

Manage access via GitHub organizations, RubyMotion 2.0, Sidekiq Pro 1.0, deprecating `::`, under the hood of Ruby's method dispatch, and the reform gem all in this episode of Ruby5.

May 7th, 2013

We Adequackly cover RailsConf and free Rails 4 videos, Phusion Passenger 4.0.1, a Better STI approach, logging your Mail, and setting up a Rails 4 Server, all while releasing the Jekyll on this episode of Ruby5.