Why HTTP Streaming?
Rails 3.1 is going to support HTTP streaming, aka chunked responses, this post explains what's all about.
What Is HTTP Streaming?
Ordinary dynamic HTTP responses need a Content-Length header. Their timeline look like this:
HTTP request ...
Ruby Hero Awards 2011
It’s that time again to take a moment to think about those who have impacted the Ruby community this year but have not received the recognition they deserve. We have given away eighteen awards in the past three years at Railsconf, a......
Rails 3.0.6 has been released!
Hi everybody! Rails 3.0.6 has been released!
Let's get the serious business out of the way first:
Rails 3.0.6 contains an important security fix! Please upgrade!
Rails versions 3.0.x prior to 3.0.6 contain an XSS vulnerability. The
v...
Rails 3.0.5 has been released!
Aaron Patterson showed us some tenderlove this week by releasing Rails 3.0.5. Have a peek at what got updated.
Bugs Fixed
Fix when gzip returns a UTF-8 string on Ruby 1.9, when it is actually binary. commit
Active Record lim...
CSRF Protection Bypass in Ruby on Rails
There is a vulnerability in Ruby on Rails which could allow an attacker to circumvent the CSRF protection provided. This vulnerability has been assigned the CVE Identifier CVE-2011-0447.
Versions Affected: 2.1.0 and above
Not affe...
New Releases: 2.3.11 and 3.0.4
Two new versions of Ruby On Rails have been released today. As well as including a number of bugfixes they contain fixes for some security issues. The full details of each of the vulnerabilities are available on the rubyonrails-security ...
Conferences for 2011
One of the reasons the Ruby and Rails community is so strong and passionate is because of the awesome regional conferences that happen all around the globe on a yearly basis. Previously on this blog I’ve gone through the list and highli......
Rails for Zombies
This morning my team over at Envy Labs released a free online tutorial called Rails for Zombies. The website combines screencasts with in-browser coding to provide an interactive learning experience teaching the basics of Ruby on Rails.
...
Rails 3.0.3: Faster Active Record plus fixes
How about some free speed? Well, here you go. Rails 3.0.3 includes a much faster version of Active Record that reclaims the performance lost when we went from Rails 2.3.x to 3.x and then some. Aaron Patterson has done a phenomenal job benc......
Security Vulnerability in Nested Attributes code in Ruby On Rails 2.3.9 and 3.0.0
There is a vulnerability in the nested attributes handling code in some versions of Ruby on Rails. An attacker could manipulate form parameters and make changes to records other than those the developer intended. This vulnerability has be...
charity:water thanks the Rails community
<iframe src="http://player.vimeo.com/video/15600111?title=0&byline=0&portrait=0&color=0ead00" frameborder="0" height="225" width="400"></iframe>Thank you, Ruby on Rails community, from Central African Republic.
We raise...
RubyAndRails 2010
RubyEnRails returns this year bigger and better as RubyAndRails 2010, running from 21-22 October in Amsterdam. Talks are in English and entry is just €149,00.
The speaker lineup is shaping up great. Check out the program and sign up n...
