NetBeans 6.0 final (my Ruby/Rails/C/C++ IDE of choice) was released a couple of days ago. Pat Eyler posted on his blog an interview with Tor Norbye, which outlines many of the spiffy features of NetBeans 6 and some of the challenges in writing IDE tools for a dynamic language such as Ruby.
I recently discovered that my Rails model validations could be easily bypassed or broken by adding whitespace to the beginning or end of strings as they are entered in forms. For example, if your user account system is based on the uniqueness of email addresses, “joe@example.com” and ” joe@example.com” would validate as unique. This is something that nearly every webapp I can think of would want to avoid.
Fortunately there is a simple Rails plugin, strip_attributes, which will take care of this easily and efficiently. You can enable it on a per-model or per-field basis if you need fine-grained control. See the Rails wiki for more details.
In other news, there will be no December meeting of the NH Ruby and Rails User Group. Enjoy the holidays!
Because it’s an enjoyable language to program in. Thank you, Giles, for reminding us about the importance of this factor.
Total amount my household spent today in retail stores, dining out, and for gas/transportation: $0.00.
Another successful black Friday.
Jeff Bezos demonstrates his business genius again with Kindle, their new eBook reader. Unfortunately, there are some other ramifications of proprietary eBook systems. Mark Pilgrim summarizes them well (and demonstrates some flip-flopping by Bezos) in this 5-act “play.”
Richard Stallman’s essay The Right to Read is referenced in this article and is definitely worth reading in and of itself.
Don’t get me wrong – I’d love a better platform for reading PDFs and web pages than my Nokia N770 web tablet. But Kindle is definitely not for me.
Crypto geeks are buzzing with today’s Bruce Schneier article in Wired. Schneier questions some suspicious contributions by the NSA to the random number generator of a forthcoming encryption standard. Unfortunately, the most likely conclusion to draw is that a backdoor is being deliberately introduced. It will be interesting to see how this plays out over the next few weeks.
This blog post on Wired provides insight into the processes Hushmail uses to comply with court orders. Anyone with a Hushmail account – or users of similar privacy enforcement services – should read this article carefully. It turns out that a convenience feature of Hushmail has enabled the company to turn over unencrypted emails from users who take advantage of this “feature.” I agree with the author of the article that Hushmail should be praised for being so open regarding what is going on. Yet at the same time you have to wonder what other flaws may exist with other services that haven’t been revealed.
I’m not much of a paranoid, tinfoil-hat type, but I do encourage people to make use of privacy-enhancing services like Hushmail, in the hopes they will become more mainstream. I do this based on the philosophy that one’s right to privacy and security is only worth something when people choose to exercise those rights.
Don’t forget, the next meeting of the NH Ruby and Rails User Group is coming early this month. We’ll be meeting on Monday, November 12. Guest speaker and author David Berube will be discussing reporting using Ruport and various other tools. He knows a bit about this topic since he has a book forthcoming on the subject in early 2008.
I’ll also spend a few minutes discussing how to keep your mongrel processes under the watchful eye of monit. This is an outstanding utility that has many uses in systems administration.
![[FSF Associate Member]](https://blog.zenlinux.com/wp-content/uploads/2010/06/fsf_badge.png "Free Software Foundation Member"){kind=icon}