Hi, I use ssl_requirement. I read the blog post about the holes, and really there is absolutely nothing to worry about, simply make sure the page where the form is displayed has https in the URL and you're 100% safe.
Anyway IE would issue a warning if the form that is about to submit data is not on a totally secured page (images, etc.). And now on Firefox 3.5 an https url also has a blue bar (or green bar for Extended Validation) so the user has a better visual information that the page he is on is secured. There are no security problems at all with ssl_requirement. -- Posted via http://www.ruby-forum.com/. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---
