5:46 Play Subscribe with or

Episode #291 - July 24th, 2012

E1574ab5d4fc1e9178987de73c8f3c07.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Eric Allam 9c5541e591a62dd93a2fd2d45b5732dd.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Olivier Lacan

We talk about Sublime editing, implicit gemsets with Bundler & rbenv, really secure HTTPS with HSTS headers, easy graph output with Graphene and Rubies in Gemfiles thanks to Heroku's new Bundler 1.2.0-RC compatible Ruby buildpack.

This episode is sponsored by Try Git. Still stuck in SVN land or not yet feeling comfortable with Git? Try Git is a great interactive way to get your feet wet, and best of all it's free.

  • Try Git
  • Sublime Text 2
  • Implicit Gemsets
  • HTTPS with HSTS
  • Graphene
  • Heroku & Bundler 1.2.0-RC
  • Ruby5

Living with HTTPS: HSTS Jump to Story

This interesting blog post by Adam Langley explains that redirecting people to HTTPS is not as secure as you might think. It leaves you vulnerable to man-in-the-middle attacks when the first request is HTTP, that one could intercepted before users are redirected to the HTTPS one. No what you want to do is to use a header called: strict-transport-security or HSTS. This way, it's not the user’s burden to decide whether a certificate is secure or not. With HSTS, users will not be able to access a page with a certificate that isn’t proper.

May 17th, 2013

Today's episode covers a major release for minitest, some JSON standards work, a tutorial on tagging with ActiveRecord and Postgres (plus an arduino to trigger the spray paint can), a RubyMotion tutorial and a little thing called CoVim that will blow your mind.

May 14th, 2013

From multi to native json, JoyBox hits 1.0, ContextValidations and FormObjects, teaching kids at KidsCodeCamp, Plataformatec gems, tab navigation with Tabulous 2 and Git Real 2 online course.

May 10th, 2013

Manage access via GitHub organizations, RubyMotion 2.0, Sidekiq Pro 1.0, deprecating `::`, under the hood of Ruby's method dispatch, and the reform gem all in this episode of Ruby5.

May 7th, 2013

We Adequackly cover RailsConf and free Rails 4 videos, Phusion Passenger 4.0.1, a Better STI approach, logging your Mail, and setting up a Rails 4 Server, all while releasing the Jekyll on this episode of Ruby5.