Upgrade your old Rails installations ... Now!

Posted by Daniel Butler Wed, 09 Aug 2006 22:59:00 GMT

DHH has decreed:

This is a MANDATORY upgrade for anyone not running on a very recent edge (which isn’t affected by this). If you have a public Rails site, you MUST upgrade to Rails 1.1.5. The security issue is severe and you do not want to be caught unpatched.

The issue is in fact of such a criticality that we’re not going to dig into the specifics. No need to arm would-be assailents.

So upgrade today, not tomorrow. We’ve made sure that Rails 1.1.5 is fully drop-in compatible with 1.1.4. It only includes a handful of bug fixes and no new features.

So, if this blog goes down in the next few minutes for a nick, that’s bloody well why.

Posted in Ruby on Rails | 1 comment

↓ Sponsored Links ↓

↑ Sponsored Links ↑

Comments

Leave a response

nuke edit
Daniel said about 19 hours later:

Woohoo! Rails bug makes Slashdot news.

http://developers.slashdot.org/article.pl?sid=06/08/10/0213259

RSS feed for this post

Mushroom and Moss, Juniper Springs Creek, Ocala National Forest (December 2002)

Yup Dot Com

We create modern and agile web sites and applications built on proven open source technologies. More »

Your name	(leave url/email »)
Your blog
Your email
Your message
Comment Markup Help Preview comment

	Blog
	About Us
	Portfolio
	Services
	Support
	Contact Us

Upgrade your old Rails installations ... Now!

Comments

Yup Dot Com

Quick Search

Navigation

Delicious/yupdotcom

Archives