Ruby on Rails security by bauland42

I just want to know whether it's secure or not

You know security is an important topic, but sometimes getting That Feature ready is just more important. Use the power of habits and strategies to constantly improve.

More info
Many facets of security

Habits are used by many successful and busy people to make big improvements

But before you jump into checking for updates every day, we'll also need an overall approach. Security has many facets. Use habits to constantly improve these facets in no time:

Learning

So we don't introduce new vulnerabilities or keep repeating insecure patterns.

Keeping up

with new attacks and software updates for Rails, gems and on the server.

Being prepared for the worst case scenario.
Knowing what your users are doing.
Hardening security like it's 2017.
About

Hey, I'm Heiko Webers, and I have one goal

…Make your Rails application more secure than it was before you found me. You already put in a lot of thought to keep your Rails application secure. You subscribed to the Rails security updates, you read the Rails security guide and plenty of posts. However, sometimes security feels like a mystery and firefighting.

This site is about an overall Rails security strategy that will help you understanding what is secure and what not.
Customer comments (security is a sensitive topic, 90% choose not to disclose)
  • Trackman Up customer

    I save so much time because the CSO service
    Trackman Up takes care of security.
  • Tolingo

    The professional audit by bauland42 just made
    our applications much more secure.
Guides & Articles

These Rails security guides and articles are available:

Rails Content-Security-Policy Admin panel mutual TLS authentication
A strategy for a Rails Content Security Policy

A strategy for a Rails Content Security Policy

A Rails Content Security Policy (CSP) is a great way to reduce or completely remove Cross Site Scripting (XSS) vulnerabilities.

Strategy before details: Keep up with Rails security; new guide

Strategy before details: Keep up with Rails security; new guide

This helps you create a system to keep up with Rails web app security even in busy times. Full guide.

A week with a Rails Security Strategy

A week with a Rails Security Strategy

A set of mini habits every workday to achieve a little progress in all the different aspects of security.

Hey, I'm Heiko

Hey, I'm Heiko

Actionable articles on how to develop a Rails security strategy

Products

Here are a few things that I can offer you