Sign in through GitHub

Please read for an updated status on RailsCasts:

Learn more or hide this

Hackers Love Mass Assignment

#26 Hackers Love Mass Assignment

May 02, 2007 | 6 minutes | Active Record, Security, Forms
Your site may be at risk! When using mass assignment, you are giving the user complete control over that model and its associations. See how a hacker might use this vulnerability and learn how to stop it in this episode.
  • Download:
  • mp4Full Size H.264 Video (10.1 MB)
  • m4vSmaller H.264 Video (6.8 MB)
  • webmFull Size VP8 Video (16.9 MB)
  • ogvFull Size Theora Video (13.7 MB)