OpenRuby.com

18 Jun '12, 9pm

@martinkl Re: ruby 1.8.7, we've already "fixed" (made non-distributed-systems-friendly) it.

The situation is similar to the one found for Perl in 2003. In 1.8 series of Ruby, we use a deterministic hash function to hash a string. Here the "deterministic" means no other bits of information than the input string itself is involved to generate a hash value. So you can precalculate a string's hash value beforehand. By collecting a series of strings that have the identical hash value, an attacker can let ruby process collide bins of hash tables (including Hash class instances). Hash tables' amortized O(1) attribute depends on uniformity of distribution of hash values. By giving such crafted input, an attacker can let hash tables work much slower than expected (namely O(n2 ) to construct a n-elements table this case).

Full article: http://www.ruby-lang.org/en/news/2011/12/28/denial-of-ser...

Tweets

Tutoriais para Ruby #14elw

ruby-br.org 18 Jun '12, 7pm

Página Inicial 1. O Básico Sobre este capítulo Ruby Interativo: primeiros passos Strings (texto) Nomes novos para coisas a...

found this at aaa tempting

proudduck.com 17 Jun '12, 10am

Veja como é simples fazer laços com Ruby #14elw

Veja como é simples fazer laços com Ruby #14elw

ruby-br.org 18 Jun '12, 8pm

Agora você será introduzido em um dos mais importantes aspectos das linguagens de programação: laços (loops). Usando seu e...

Scout: A Ruby Powered Web Monitoring and Reporting Service:

Scout: A Ruby Powered Web Monitoring and Report...

rubyinside.com 19 Jun '12, 8pm

Disclaimer: Scout is a commercial service. I have received no compensation for mentioning this service and am posting abou...

Arrays de forma simples #14elw

ruby-br.org 18 Jun '12, 8pm

Você já está familiarizado com um casal de classes Ruby (Integer e String ). A classe Array é usada para representar uma c...

In case you didn't know it - #rails has a curre...

api.rubyonrails.org 23 Jun '12, 6pm

<%= button_to "New", :action => "new" %> # => "<form method="post" action="/controller/new" class="button_to"> # <div><inp...

Jay Fields' Thoughts: Ruby: Class Methods:

Jay Fields' Thoughts: Ruby: Class Methods:

blog.jayfields.com 17 Jun '12, 5am

The real stumbling block is that Java class methods are totally different things from Ruby "class" methods, so different t...

@StartupRootsSG Panel 1: Which language is righ...

sgentrepreneurs.com 18 Jun '12, 9am

The StartupRootsSG program has kicked off in the past weeks with the interns starting their work in the most challenging a...

Learning Ruby and Rails:

everydayrails.com 18 Jun '12, 3am

I live in a town dominated by Python, PHP , and Java developers, so hiring someone who can come in and write Ruby code fro...

Linguagem de Programação Ruby:

ruby-lang.org 17 Jun '12, 11pm

Matz recebe o FSF's 2011 Free Software Award O Prémio para o Avanço do Software Livre é dado, anualmente, a alguém que ten...

rolling code の algorithm?:

atmel.com 17 Jun '12, 11am

[Event] Which language is right for your startup? PHP, Python or Ruby?

[Event] Which language is right for your startu...

e27.sg 19 Jun '12, 9am

, who has more than 10 years of experience in PHP development, and is currently a senior software engineer at mig33. He is...

Ruby 程序设计语言官方网站:

ruby-lang.org 24 Jun '12, 2am

一直以来,Ruby 在中国都没有一个靠谱的社区,如今,Ruby China Group 出现了,Ruby China Group 是一个非营利组织,它旨在为中国的 Ruby 和 Rails 爱好者提供一个自由,开放的交流平台。 如果你: 爱 R...

Veja como enviar email(Gmail) usando Ruby! #14elw

Veja como enviar email(Gmail) usando Ruby! #14elw

ruby-br.org 19 Jun '12, 6pm

A linguagem Ruby permite que você envie e-mails facilmente usando diretamente o SMTP (Simple Mail Transfer Protocol). Algu...

Automatic Ruby v12.6.0 Release Notes & ChangeLog

rubyforge.org 17 Jun '12, 5pm

Notes: Release Name: v12.6.0 Notes: "Automatic Ruby" is updated! This is a powerful framework for automation all! This fra...