[Nitro] Security problems

Emmanuel Piperakis epiperak at softlab.ece.ntua.gr
Fri Nov 11 04:47:05 EST 2005

> Dear devs,
> I am wondering if anyone has found (or can find) any security problems
> with Nitro. Moreover, If anyone can suggest any common security
> measures that could be wrapped in a controller helper/aspect I would
> like to know. Even urls for (authoritive) articles regarding web site
> security would be helpful.

I am not sure if this can be done already, but I would like the path to be 
hidden. I would like to show only the main page URI. I think it is a 
security problem if a user sees things like http://myhost.com/project/1

The users might type /2 by himself...

> Thanks in advance,
> George.
> --
> http://www.gmosx.com
> http://www.navel.gr
> http://www.nitrohq.com
> _______________________________________________
> Nitro-general mailing list
> Nitro-general at rubyforge.org
> http://rubyforge.org/mailman/listinfo/nitro-general

Emmanouil Piperakis (epiperak at cs.ntua.gr)
{To explore is Human, to Create is Devine,
  To teach is Primal, to Rule is Sin}

More information about the Nitro-general mailing list