quattro_4 scribble

scribble 落書き (調べた事をただ落書きする)

Ruby5 #422

Ruby5 - Episode #422 – November 26th, 2013

  • Heap Overflow
    • Ruby CVE
    • untrusted_data.to_f
    • JSON.parse untrusted_data
  • Rack::Attack
    • protect your web app from bad clients
    • whitelisting, blacklisting, throttling, and tracking based on arbitrary properties of the request
  • Cookie Storage
    • a way to specify a custom serializer to be used for the Cookie Session Store, instead of having it hardcoded to use Marshal
  • File Tasks
    • file 'foo.txt' do
      • touch, cp
  • Ruby GC
    • heaps and RVALUEs
    • Ruby Under a Microscope (book)

♫ Ivy Levan - Hot Damn

by SoundHound