Presentation by Jonathan Weiss at RailsConf Europe 2008 in Berlin. This talk will focus on the security of the Ruby on Rails Web Framework. Some do’s and don’ts will be presented along with security best practices for common attacks like session fixation, XSS, SQL injection, and deployment weaknesses.