Monthly Archives: October 2008

Are Ruby Session ID’s Secure?

The question of the security of cookie-based session storage in Rails has pretty much been settled it seems to me. Out of the box, Rails uses cookie-based session storage. When you generate a new Rails app you get a nice … Continue reading

Posted in Ruby, Ruby on Rails, security | 3 Comments