Index | 339Ruby-DBI (Ruby database-independent
adapter), 100
ruby-debug, 52–56
RubyGems, 312, 314
Magic Multi-Connections, 118
RubyInline, 182
rules, 114
method lookups, 5
running
benchmarks, 163
maintenance automatically, 171
runtime
Apache Portable Runtime (APR), 299
feature change, 41
methods
delaying lookup until, 23
viewing at, 28–36
S
safe methods, 188, 189
salting passwords, 128
SAN (storage area network), 124
sanitize method, 140
scaffolding, 291
scalability
architecture, 173–181
Representational State Transfer
(REST), 206
shared-nothing, 316–317
Scalable Coherent Interconnect (SCI), 121
scanning profiles, 158–161
schemas
ActiveRecord migration, 285
definition methods, 129
SCI (Scalable Coherent Interconnect), 121
script/plugin tool, 80–83
searching
code, 49
global searches, 56
Seaside, 26
security
application design, 127–137
architecture
canonicalization, 143
cross-site request forgery
(CSRF), 141–143
cross-site scripting (XSS), 139–141
sessions, 137–139
web issues, 137–144
authentication, 127–130
clients, 130–135
environments, 145
error messages, 136
Liquid, 283
obscurity, 135
secure fallback, 135
SQL injection, 144
whitelists, 137
select method, 37
selection
of representations, 193
tools, 182
semantic introspection, 2
sendfile function, 104
sending data with X-Sendfile, 105
separation of concerns, 4
Serializable isolation level, 97
servers
8-bit Unicode Transformation Format
(UTF-8), 248
Amazon S3 (Simple Storage Services) case
study, 234
Apache, 318
applications, 319
black-box analysis, 148
front end web, 317–319
Lighttpd, 318
nginx, 318
pen, 318
pound, 318
services
Action Web Service (AWS), 231
ActiveResource, 223–230
Amazon S3 (Simple Storage Service) case
study, 231–235
serving static files, X-Sendfile, 107
sessions
cookies, 138
cross-site request forgery (CSRF), 141
hijacking, 138
management, 176
objects, 58
scalability, 174
security, 137–139
state, 195
resources, 198
sticky, 138, 197
storage
ActiveRecordStore, 174
CookieStore, 134, 176
fragments, 179
MemCacheStore, 175
methods, 137