Leo's Technical Blog

Leo's Technical Blog

Mostly about computer programming.


advising, rails, security

Security by Stupidity I: Rails and attr_accesible

Posted on .

Sometimes you get surprised how frameworks and/or applications messes things up when trying to deal with security. Here is one example. Context Framework: Rails Stupidity: attraccesible/attrprotected Output: Annoyed developers and/or missing data. Explanation…