Archives - 12 February 2013, Tuesday - OpenRuby.com

Follow @openruby

Archives - 12 February 2013, Tuesday

YAML f7u12 | Tenderlovemaking

tenderlovemaking.com 12 Feb '13, 1am

Our attacker knows that this class is defined in the system. Using YAML, along with Psych’s object deserialization, they can inject any object in to the system they choose. So how can they use this object? Let’s take a look at the YAML payload for exploiting this code, then talk about...
上級者向け：Ruby on Rails 勉強法 - ぶっそれんれ研究室

bussorenre.hatenablog.jp 12 Feb '13, 5pm

上級者向け：Ruby on Rails 勉強法 GitHub 学生垢申請してみた。ポートフォリオサイト作りました Windows でRuby on Rails の環境を構築する（Cygwin無し） Mac OS X で Ruby on Rails の環境開発構築
Related:
1. You've heard of Ruby on Rails, but have you heard of Cobol on Cogs? coboloncogs.org 16 Feb '13, 5am
2. Conosci Ruby & Rails? Sta arrivando: Mikamai Ruby Academy 2013 | 2nd Editio... blog.mikamai.com 21 Feb '13, 2pm
3. Ruby on Rails SWE: findmjob.com 15 Feb '13, 4am
4. Initiation à Ruby on Rails // speakerdeck.com 12 Feb '13, 2pm
5. Neues Sicherheits-Update für Ruby on Rails | heise online heise.de 12 Feb '13, 5pm
6. Neues Sicherheits-Update für Ruby on Rails | heise Security heise.de 12 Feb '13, 5pm
Neues Sicherheits-Update für Ruby on Rails | heise Security

heise.de 12 Feb '13, 5pm

Das Ruby-on-Rails -Team schließt weitere kritische Sicherheitslücken in dem populären Web-Application-Framework. Mit den Updates auf die Versionen 3.2.12, 3.1.11 und 2.3.17 wird die Sicherheitslücke mit der Bezeichnung CVE-2013-0276 geschlossen. Ebenfalls wird ein Fehler (CVE-2013-027...
Related:
1. Neues Sicherheits-Update für Ruby on Rails | heise online heise.de 12 Feb '13, 5pm
2. Neues Sicherheits-Update für Ruby on Rails | heise open heise.de 12 Feb '13, 5pm
3. More Rails security fixes released - The H Security: h-online.com 12 Feb '13, 4pm
4. More Rails security fixes released - The H Open: h-online.com 12 Feb '13, 4pm
5. Ruby on Rails: Aktualisierungen schließen kritische Sicherheitslücken - Gol... golem.de 12 Feb '13, 11am
6. Ruby on Rails 3.2.12, 3.1.11 and 2.3.17 Released to Address Security Holes news.softpedia.com 13 Feb '13, 11am
7. 上級者向け：Ruby on Rails 勉強法 - ぶっそれんれ研究室 bussorenre.hatenablog.jp 12 Feb '13, 5pm
Neues Sicherheits-Update für Ruby on Rails | heise online

heise.de 12 Feb '13, 5pm

Das Ruby-on-Rails -Team schließt weitere kritische Sicherheitslücken in dem populären Web-Application-Framework. Mit den Updates auf die Versionen 3.2.12, 3.1.11 und 2.3.17 wird die Sicherheitslücke mit der Bezeichnung CVE-2013-0276 geschlossen. Ebenfalls wird ein Fehler (CVE-2013-027...
Related:
1. Neues Sicherheits-Update für Ruby on Rails | heise Security heise.de 12 Feb '13, 5pm
2. Neues Sicherheits-Update für Ruby on Rails | heise open heise.de 12 Feb '13, 5pm
3. Ruby on Rails: Aktualisierungen schließen kritische Sicherheitslücken - Gol... golem.de 12 Feb '13, 11am
4. 上級者向け：Ruby on Rails 勉強法 - ぶっそれんれ研究室 bussorenre.hatenablog.jp 12 Feb '13, 5pm
5. Ruby on rails developer (all levels) at Whisk / Work In Startups workinstartups.com 12 Feb '13, 9pm
6. More Rails security fixes released - The H Open: h-online.com 12 Feb '13, 4pm
Ruby on Rails: Aktualisierungen schließen kritische Sicherheitslücken - Golem.de

golem.de 12 Feb '13, 11am

Das Ruby-on-Rails-Team hat die Updates 3.2.12, 3.1.11 und 2.3.17 veröffentlicht , die zwei kritische Sicherheitslücken in dem Webapplikations-Framework schließen. In allen Versionen wird damit ein Fehler in der Methode attr_protected in Active Record behoben. Die Sicherheitslücke wird...
Related:
1. New vulnerabilities just being disclosed on Ruby On Rails. YAML and JSON...... groups.google.com 11 Feb '13, 7pm
2. Neues Sicherheits-Update für Ruby on Rails | heise online heise.de 12 Feb '13, 5pm
3. Neues Sicherheits-Update für Ruby on Rails | heise Security heise.de 12 Feb '13, 5pm
4. Neues Sicherheits-Update für Ruby on Rails | heise open heise.de 12 Feb '13, 5pm
Did Rails have a major security flaw today?

didrailshaveamajorsecurityflawtoday.com 12 Feb '13, 3pm

have a major security flaw today?
Related:
1. More Rails security fixes released - The H Security: h-online.com 12 Feb '13, 4pm
2. More Rails security fixes released - The H Open: h-online.com 12 Feb '13, 4pm
3. Senior Ruby on Rails | Sysgen IT Job Openings sysgen.com.ph 13 Feb '13, 7am
4. Ruby on Rails vulnerable to mass assignment and SQL injection zweitag.de 11 Feb '13, 6pm
5. Ruby on Rails Patches DoS, Remote Execution Flaws threatpost.com 13 Feb '13, 6pm
6. Adding social networking features to a RoR site | Ruby & Ruby on Rails | So... freelancer.com 11 Feb '13, 6am
7. Ruby on Rails 3.2.12, 3.1.11 and 2.3.17 Released to Address Security Holes news.softpedia.com 13 Feb '13, 11am
8. iStaff | 4142504 jobs.telegraph.co.uk 11 Feb '13, 5am
Ruby on rails developer (all levels) at Whisk / Work In Startups

workinstartups.com 12 Feb '13, 9pm

We're looking for an Ruby/Rails developers to help develop the front end for our next generation web platform. We're a young startup in the online food space, we've just raised our second round of external finance and are looking for outsourced resource to support our internal hiring ...
Related:
1. Ruby on Rails developer | Facebook | MySQL | Ruby & Ruby on Rails | Twitter freelancer.com 13 Feb '13, 9pm
2. New vulnerabilities just being disclosed on Ruby On Rails. YAML and JSON...... groups.google.com 11 Feb '13, 7pm
3. Looking for an experienced Ruby on Rails and Node.js developer | Drupal | R... freelancer.com 13 Feb '13, 12pm
4. Senior Ruby on Rails Developer en Berlin trabajosrails.com 13 Feb '13, 4pm
5. UK London Graduate Jobs - find London Graduate jobs - Ruby on Rails develop... london-jobsearch.co.uk 12 Feb '13, 7pm
6. Ruby on Rails Web Developer odesk.com 15 Feb '13, 9pm
7. Looking For Ruby Developer - Ruby Ruby On Rails job in Chicago, IL simplyhired.com 15 Feb '13, 1pm
8. Now Hiring: Ruby script for Sketchup - Ruby Google SketchUp: The included v... spacecoastprojects.donanza.com 16 Feb '13, 2am
More Rails security fixes released - The H Open:

h-online.com 12 Feb '13, 4pm

The Ruby on Rails Developers have released updates to Rails 3.2, 3.1 and 2.3 and made users aware of an update to the JSON gem to close an important security flaw. Most notable of the problems is CVE-2013-0277 , another problem with serialised attributes in YAML. The flaw, which only ...
Related:
1. More Rails security fixes released - The H Security: h-online.com 12 Feb '13, 4pm
2. New vulnerabilities just being disclosed on Ruby On Rails. YAML and JSON...... groups.google.com 11 Feb '13, 7pm
3. [SEC][ANN] Rails 3.2.12, 3.1.11, and 2.3.17 have been released! weblog.rubyonrails.org 11 Feb '13, 6pm
4. Ruby on Rails 3.2.12, 3.1.11 and 2.3.17 Released to Address Security Holes news.softpedia.com 13 Feb '13, 11am
5. Neues Sicherheits-Update für Ruby on Rails | heise Security heise.de 12 Feb '13, 5pm
6. Ruby on Rails Patches DoS, Remote Execution Flaws threatpost.com 13 Feb '13, 6pm
7. Did Rails have a major security flaw today? didrailshaveamajorsecurityflawtoday.com 12 Feb '13, 3pm
8. Neues Sicherheits-Update für Ruby on Rails | heise open heise.de 12 Feb '13, 5pm
bundler-audit: patch-level verification for Bundler

rubyflow.com 12 Feb '13, 4am

bundler-audit: patch-level verification for Bundler Posted by postmodern on February 12, 2013 — 0 comments bundler-audit provides patch-level verification for Bundler. It will check the gem versions in Gemfile.lock against a local database of advisories. Check whether your Rails apps ...
More Rails security fixes released - The H Security:

h-online.com 12 Feb '13, 4pm

The Ruby on Rails Developers have released updates to Rails 3.2, 3.1 and 2.3 and made users aware of an update to the JSON gem to close an important security flaw. Most notable of the problems is CVE-2013-0277 , another problem with serialised attributes in YAML. The flaw, which only ...
Related:
1. More Rails security fixes released - The H Open: h-online.com 12 Feb '13, 4pm
2. New vulnerabilities just being disclosed on Ruby On Rails. YAML and JSON...... groups.google.com 11 Feb '13, 7pm
3. Ruby on Rails 3.2.12, 3.1.11 and 2.3.17 Released to Address Security Holes news.softpedia.com 13 Feb '13, 11am
4. Did Rails have a major security flaw today? didrailshaveamajorsecurityflawtoday.com 12 Feb '13, 3pm
5. [SEC][ANN] Rails 3.2.12, 3.1.11, and 2.3.17 have been released! weblog.rubyonrails.org 11 Feb '13, 6pm
6. Neues Sicherheits-Update für Ruby on Rails | heise Security heise.de 12 Feb '13, 5pm
7. 1 year old but still usefull. Slides from my #RoR security talk at Source B... blog.gdssecurity.com 20 Feb '13, 9pm
8. Ruby on Rails Patches DoS, Remote Execution Flaws threatpost.com 13 Feb '13, 6pm
A Casual Stroll Through Discourse's Source Code

rubyflow.com 12 Feb '13, 2pm

A Casual Stroll Through Discourse's Source Code Posted by jerodsanto on February 12, 2013 — 0 comments Discourse is a new, open source discussion platform built on Rails and Ember.js. I wanted to see what a production-ready Rails/Ember codebase looks like, so I cloned the repo, had a ...
Related:
1. Open Source in your Inbox: Code Triage rubyflow.com 07 Feb '13, 3pm
2. Making some Discourse code a little better grantammons.me 10 Feb '13, 9pm
3. Gemfile Best Practices & Discourse mcdowall.info 10 Feb '13, 10pm
4. Open Source, Modern And Ruby on Rails-Powered Discussion Platform – Discourse webresourcesdepot.com 06 Feb '13, 9am
5. Discourse discourse.org 05 Feb '13, 10pm
6. "View Source" On Ruby Methods pragmaticstudio.com 13 Feb '13, 9pm
7. StackExchange's Jeff Atwood switches to Ruby on Rails and Postgres; code du... reddit.com 06 Feb '13, 1pm
Jim Weirich At BostonRB Tonight

pragmaticstudio.com 12 Feb '13, 3pm

Jim Weirich, one of our instructors, is teaching a Rails course for a client of ours in snow-drifted Boston this week. He'll also be the impromptu speaker at the Boston Ruby Group tonight. Jim always seems to be happily hacking away on an interesting project in his spare time, and att...
OpenNews: Обновление Ruby on Rails 3.2.12, 3.1.11 и 2.3.17 с устранением критической уязвимости

opennet.ru 12 Feb '13, 5pm

mobile.opennet.ru - версия для мобильного \n'); } if ( plugin ) { var swf_url = '/img/securit3.swf' + '?link1=' + 'http://click.opennet.ru/cgi-bin/opennet/hjump.cgi?securit3'; document.write(''); document.write(' '); document.write(''); document.write(' '); document.write(' '); docume...
Related:
1. Ruby on Rails 3.2.12, 3.1.11 and 2.3.17 Released to Address Security Holes news.softpedia.com 13 Feb '13, 11am
2. [SEC][ANN] Rails 3.2.12, 3.1.11, and 2.3.17 have been released! weblog.rubyonrails.org 11 Feb '13, 6pm
3. Срочно обновляемся до Ruby on Rails 3.2.12, 3.1.11 и 2.3.17 во благо собств... habrahabr.ru 11 Feb '13, 8pm
4. Neues Sicherheits-Update für Ruby on Rails | heise open heise.de 12 Feb '13, 5pm
LA Ruby Conf 2013

larubyconf.com 12 Feb '13, 9pm

Matthew is passionate about delivering quality software at ludicrous speed. He believes in collaborative thinking in an open community based on trust, teamwork and transparency. Thirsty for knowledge, Matthew constantly finds himself at the business end of the firehose. A product of T...
Initiation à Ruby on Rails //

speakerdeck.com 12 Feb '13, 2pm

Initiation à Ruby on Rails Matthieu Segret 1 Presentation Sign in to Like 1 Fan Published in Programming Stats 50 Views Share Twitter, Facebook Embed Direct Link Download PDF Explore 1 Fan Other Presentations in Programming Black/White Feb 12, 2013 by Jon Rowe XML Oct 22, 2009 by Robe...
Related:
1. You've heard of Ruby on Rails, but have you heard of Cobol on Cogs? coboloncogs.org 16 Feb '13, 5am
2. Conosci Ruby & Rails? Sta arrivando: Mikamai Ruby Academy 2013 | 2nd Editio... blog.mikamai.com 21 Feb '13, 2pm
3. 上級者向け：Ruby on Rails 勉強法 - ぶっそれんれ研究室 bussorenre.hatenablog.jp 12 Feb '13, 5pm
4. Ruby on Rails SWE: findmjob.com 15 Feb '13, 4am
5. Lead developer Ruby On Rails (CTO) - H/F - Paris - HobeeOne remixjobs.com 10 Feb '13, 1pm
2.2.3 fix and security release

redmine.org 12 Feb '13, 11pm

Redmine 2.2.3 fix and security release Added by Jean-Philippe Lang about 7 hours ago Redmine 2.2.3 fixes a few detects and was upgraded to Ruby on Rails 3.2.12 which fixes several vulnerabilities . You can read the Changelog and download it at Rubyforge .
Double Shot #1064

afreshcup.com 12 Feb '13, 12pm

Tuesday, February 12, 2013 at 5:55AM Haml 4.0.0 - Haml is moving to semantic versioning, and the next version has breaking changes. Working With Rails - One of the original Rails community sites is coming back. [SEC][ANN] Rails 3.2.12, 3.1.11, and 2.3.17 have been released! - Yes, ano...
Related:
1. Double Shot #1068 afreshcup.com 18 Feb '13, 11am
2. Double Shot #1059 afreshcup.com 05 Feb '13, 12pm
Neues Sicherheits-Update für Ruby on Rails | heise open

heise.de 12 Feb '13, 5pm

Das Ruby-on-Rails -Team schließt weitere kritische Sicherheitslücken in dem populären Web-Application-Framework. Mit den Updates auf die Versionen 3.2.12, 3.1.11 und 2.3.17 wird die Sicherheitslücke mit der Bezeichnung CVE-2013-0276 geschlossen. Ebenfalls wird ein Fehler (CVE-2013-027...
Related:
1. Neues Sicherheits-Update für Ruby on Rails | heise online heise.de 12 Feb '13, 5pm
2. Neues Sicherheits-Update für Ruby on Rails | heise Security heise.de 12 Feb '13, 5pm
3. Ruby on Rails 3.2.12, 3.1.11 and 2.3.17 Released to Address Security Holes news.softpedia.com 13 Feb '13, 11am
4. OpenNews: Обновление Ruby on Rails 3.2.12, 3.1.11 и 2.3.17 с устранением кр... opennet.ru 12 Feb '13, 5pm
5. [SEC][ANN] Rails 3.2.12, 3.1.11, and 2.3.17 have been released! weblog.rubyonrails.org 11 Feb '13, 6pm
6. Срочно обновляемся до Ruby on Rails 3.2.12, 3.1.11 и 2.3.17 во благо собств... habrahabr.ru 11 Feb '13, 8pm
7. Ruby on Rails: Aktualisierungen schließen kritische Sicherheitslücken - Gol... golem.de 12 Feb '13, 11am
8. More Rails security fixes released - The H Open: h-online.com 12 Feb '13, 4pm
著名人も利用する新たな『ファンクラブ＋定期購入サービス』を創るRuby on Railsエンジニア募集！ by Grow株式会社 | JobShare(ジョブシェア)

job-share.net 12 Feb '13, 10am

-photoshop,Illustrator,fireworksが使える。
Related:
1. 著名人も利用する新たな『ファンクラブ＋定期購入サービス』を創るRuby on Railsエンジニア募集！ by Grow株式会社 | JobShare... job-share.net 17 Feb '13, 8am
UK London Graduate Jobs - find London Graduate jobs - Ruby on Rails developer / Graduates welcome with PHP London

london-jobsearch.co.uk 12 Feb '13, 7pm

London - and Reference number of the job vacancy. To view the employers contact details, you will first need to become a registered jobseeker. Job Title: Ruby on Rails developer / Graduates welcome with PHP London Description Ruby on Rails Developer Open Source and Ruby Graduate consi...
Related:
1. Ruby on Rails developer / Graduates welcome with PHP - London with London O... jobs.newstatesman.com 10 Feb '13, 2pm
2. Ruby On Rails Developer / Graduates Welcome With: England jobs, London - Gr... graduate-job.co.uk 16 Feb '13, 8pm
3. Graduate Jobs - latest Graduate job vacancies - Ruby on Rails developer / G... topnewjob.co.uk 08 Feb '13, 5am
4. Education Jobs - latest Devon Graduate, Devon job vacnacies - Ruby On Rails... devon-job.co.uk 16 Feb '13, 9am
5. Ruby on Rails developer | Facebook | MySQL | Ruby & Ruby on Rails | Twitter freelancer.com 13 Feb '13, 9pm
6. Front-End Ruby on Rails Developer aplitrak.com 13 Feb '13, 3pm
7. Looking for an experienced Ruby on Rails and Node.js developer | Drupal | R... freelancer.com 13 Feb '13, 12pm
8. Ruby on rails developer (all levels) at Whisk / Work In Startups workinstartups.com 12 Feb '13, 9pm