21 Dec '12, 4pm

Hijacking Ruby on Rails apps through exposed "secret" tokens: < Thousands of GitHub repos:

This blog post serves as a wrap up of some aspect of the presentation I gave at ZeroNights 2012 . Ruby on Rails (RoR) is atm my favorite piece of software to hunt bugs at. After quite some time spending on looking at Rails apps I figured that I oversaw the most easy way to attack an (Open Source) Rails app for quite a while. Before I come to my main point we'll have to look at both RoR sessions and authentication systems: Ruby on Rails Sessions RoR sessions are by default stored client-side in a cookie. In order to be tamper resistant, this cookie is signed with an SHA-1 HMAC. When the HMAC is missing or the cookie being tampered with RoR will refuse to use the session variables within the cookie. So, let's look at such a cookie, as an example I'll use a Github session cookie: _gh_sess=BAh7BzoQX2NzcmZfdG9rZW4iMStDQWNRZ1l4VlZPb3ZPM3FBYXZWZGtsYzF2NUVENkdaRnhEK1A0QmNqU1k9Og9z...

Full article: http://phenoelit.org/blog/archives/2012/12/21/let_me_gith...

Tweets

Hijacking Ruby on Rails apps through exposed "s...

google.com 21 Dec '12, 4pm

csp-testing/config/initializers/secret_token.rb at master · eoftedal/csp ... https://github.com/eoftedal/csp-testing/blob/...

@adron Next time you are in that situation, che...

ozmm.org 23 Dec '12, 5am

What if my GitHub repository is corrupted or deleted? Don’t Panic! Because of the distributed nature of git, everyone alwa...

What Does Let It Burn Mean? via @DrewMTips

ace.mu.nu 28 Dec '12, 7pm

Liberal NYT Columnist Nicholas Kristof: Gee, Maybe Eternal Government Dependency Isn't Actually "Generous" Towards Its Wou...

[AJ] SelectHub: Senior Ruby/Rails Developer

authenticjobs.com 21 Dec '12, 3pm

We are a Denver/Boulder based startup that’s building a collaborative social marketplace for enterprises. We are looking t...

Are you a #Ruby (on #Rails) developer in the ar...

linkedin.com 22 Dec '12, 11am

Ruby on Rails has inspired the way people build web apps these days and generally engaged a huge community, however, the R...