[PhillyOnRails] Any news on whats what with 1.1.5?

Mike Zornek on 9 Aug 2006 18:55:39 -0000

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PhillyOnRails] Any news on whats what with 1.1.5?

From: Mike Zornek <mikezornek@mikezornek.com>

To: "talk@phillyonrails.org" <talk@phillyonrails.org>

Subject: [PhillyOnRails] Any news on whats what with 1.1.5?

Date: Wed, 09 Aug 2006 14:55:12 -0400

List-archive: <http://lists.phillyonrails.org/pipermail/talk>

Reply-to: talk@phillyonrails.org

Sender: talk-bounces@phillyonrails.org

User-agent: Microsoft-Entourage/10.1.6.040913.0

http://weblog.rubyonrails.com/2006/8/9/rails-1-1-5-mandatory-security-patch- and-other-tidbits > This is a MANDATORY upgrade for anyone not running on a very recent edge > (which isn¹t affected by this). If you have a public Rails site, you MUST > upgrade to Rails 1.1.5. The security issue is severe and you do not want to be > caught unpatched. > > The issue is in fact of such a criticality that we¹re not going to dig into > the specifics. No need to arm would-be assalients. I'm not really a fan of the fearful release note as seen above. I know some Philly on Rails people live on edge. Anyone want to go in to detail on what was actually broken? And how it was fixed? ~ Mike -- Work: http://ClickableBliss.com Play: http://MikeZornek.com _______________________________________________ talk mailing list talk@phillyonrails.org http://lists.phillyonrails.org/mailman/listinfo/talk

Follow-Ups:

Re: [PhillyOnRails] Any news on whats what with 1.1.5?
From: Brian McCallister <brianm@apache.org>

Re: [PhillyOnRails] Any news on whats what with 1.1.5?
From: Aaron Blohowiak <aaron@aaronblohowiak.com>

Prev by Date: Re: [PhillyOnRails] presentation topics

Next by Date: Re: [PhillyOnRails] Any news on whats what with 1.1.5?

Previous by thread: Re: [PhillyOnRails] presentation topics

Next by thread: Re: [PhillyOnRails] Any news on whats what with 1.1.5?

Index(es):

Date

Thread