I've been doing a lot of security work lately, making sure a rails app meets the security standards of a major financial institution.
In addition to input scrubbing, output escaping, and making sure exceptions don't reveal too much data, I've had to implement basic captcha, to make it harder for a bot to post forms. Here's a post on 3 captcha plugins that I tested out and deployed to heroku http://bit.ly/rails-captcha -- -John -- You received this message because you are subscribed to the Google Groups "Heroku" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/heroku?hl=en.
