Ruby on Rails Bootcamp in Georgia

Big Nerd Ranch, Inc. is offering their Ruby on Rails Bootcamp classes in a retreat setting outside Atlanta, GA the week of February 12th-16th. For more information you can find the press release at http://bignerdranch.com/news/2006-10-11.shtml.

CVS Repository moved to SVN

We have moved the source code repository to http://svn.ruby-online.co.uk/repos/ruby/. You can checkout it using the svn command, or you can also browse it by ViewVC.

The new machine for svn.ruby-online.co.uk is provided by Sun Microsystems. We are using Solaris 10 on the new machine, and it works pretty well.

Ruby on Rails Bootcamp in Germany

Big Nerd Ranch Europe is offering their Ruby on Rails Bootcamp classes in Kloster Eberbach, Germany (near Frankfurt) the week of March 26th-30th. For more information you can find the press release at http://www.bignerdranch.com/news/2006-12-20.shtml.

Another DoS Vulnerability in CGI Library

Another vulnerability has been discovered in the CGI library (cgi.rb) that ships with Ruby which could be used by a malicious user to create a denial of service attack (DoS).

This vulnerability is open to the public as JVN#84798830.

Please note that the previous patch (<URL:http://ftp.ruby-online.co.uk/pub/ruby/1.8/ruby-1.8.5-cgi-dos-1.patch>) does not fix this problem.

Continue Reading…

DoS Vulnerability in CGI Library

A vulnerability has been discovered in the CGI library (cgi.rb) that ships with Ruby which could be used by a malicious user to create a denial of service attack (DoS). The problem is triggered by sending the library an HTTP request that uses multipart MIME encoding and has an invalid boundary specifier that begins with “” instead of “-”. Once triggered it will exhaust all available memory resources effectively creating a DoS condition.

Ruby 1.8.5 and all prior versions are vulnerable. This vulnerability is open to the public as CVE-2006-5467.

Continue Reading…

RubyConf 2006 Recap

Last weekend over 300 Rubyists gathered in Denver, CO to discuss many aspects of our favorite language. This was my first conference and I must say they are every bit as impressive as you have probably heard. The presentations are great, but it’s hard to top talking and hacking with with fellow Rubyists between the events. Everyone should experience that at least once.

Continue Reading…

RubyConf 2006 Almost Upon Us!

With people traveling from all over the world, by train, by car, and by air, enthusiasm is building for RubyConf 2006! The conference is scheduled to begin Friday morning, but if you arrive early you may be able to join in on a few preliminary activities.

Continue Reading…

Site Launch At Last!

As you can see the much anticipated redesign is now live. It was over a year ago that it was suggested that a “visual identity team” be formed for the purpose of redesigning the Ruby Web site. The redesign team created over 20 mockups for the the new site, posted several for the Ruby community to comment on, and finally decided on the current design.

Once the design was chosen it was lovingly converted to CSS and XHTML and an administration system was written for it. The content was then ported over from the old Web site and massaged by an enthusiastic group of volunteers.

Continue Reading…

Server maintenance

Services except mailinglists will be down for a server maintenance on Wed Aug 30 08:00:00 UTC 2006. The downtime will be a few hours. Sorry for inconvenience.

Ruby 1.8.5 released!

Ruby 1.8.5 has been released.

The source is ftp://ftp.ruby-online.co.uk/pub/ruby/ruby-1.8.5.tar.gz, the md5sum is 3fbb02294a8ca33d4684055adba5ed6f, and filesize is 4,438,603 bytes.

Mauricio Fernandez wrote a summary of changes.

The Future of Ruby

There has been much discussion recently on the future directions Ruby will be exploring, with some official plans coming from Matz himself. If you are interested to know what’s coming, check out the following links:

Please remember that Ruby will continue to grow and change. The above information is only what we think we know at this point in that process.

Ruby in Google Summer of Code

Student Rubyists will be able to participate in the Google Summer of Code this summer, with Ruby Central, Inc. Ruby Central, Inc. as mentoring organization. See the Summer of Code page at Ruby Central.

Conference season is here

This coming spring and summer are shaping up to be a real “conference alley” for Rubyists. (And RubyConf 2006 hasn’t even been announced yet!) Upcoming events of interest include:

Check specific events for information about submitting talk proposals and/or registering to attend.