24 min listen
Michael Lubas on the Future of Elixir Security
FromElixir Wizards
ratings:
Length:
41 minutes
Released:
Apr 6, 2023
Format:
Podcast episode
Description
In today's episode of Elixir Wizards, Michael Lubas, founder of Paraxial.io, joins hosts Owen Bickford and Bilal Hankins to discuss security in the Elixir and Phoenix ecosystem. Lubas shares his insights on the most common security risks developers face, recent threats, and how Elixir developers can prepare for the future.
Common security risks, including SQL injection and cross-site scripting, and how to mitigate these threats
The importance of rate limiting and bot detection to prevent spam SMS messages
Continuous security testing to maintain a secure application and avoid breaches
Tools and resources available in the Elixir and Phoenix ecosystem to enhance security
The Guardian library for authentication and authorization
Take a drink every time someone says "bot"
The difference between "bots" and AI language models
The potential for evolving authentication, such as Passkeys over WebSocket
How Elixir compares to other languages due to its immutability and the ability to trace user input
Potion Shop, a vulnerable Phoenix application designed to test security
Talking Tom, Sneaker Bots, and teenage hackers!
The importance of security awareness and early planning in application development
The impact of open-source software on application security
How to address vulnerabilities in third-party libraries
Conducting security audits and implementing security measures
Links in this episode:
Michael Lubas
Email - michael@paraxial.io
LinkedIn - https://www.linkedin.com/in/michaellubas/
Paraxial.io - https://paraxial.io/
Blog/Mailing List - https://paraxial.io/blog/index
Potion Shop - https://paraxial.io/blog/potion-shop
Elixir/Phoenix Security Live Coding: Preventing SQL Injection in Ecto
Twitter - https://twitter.com/paraxialio
LinkedIn - https://www.linkedin.com/company/paraxial-io/
GenServer Social - https://genserver.social/paraxial
YouTube - https://www.youtube.com/@paraxial5874
Griffin Byatt on Sobelow: ElixirConf 2017 - Plugging the Security Holes in Your Phoenix Application (https://www.youtube.com/watch?v=w3lKmFsmlvQ)
Erlang Ecosystem Foundation: Security Working Group - https://erlef.org/wg/security
Article by Bram - Client-Side Enforcement of LiveView Security (https://blog.voltone.net/post/31)
Special Guest: Michael Lubas.
Common security risks, including SQL injection and cross-site scripting, and how to mitigate these threats
The importance of rate limiting and bot detection to prevent spam SMS messages
Continuous security testing to maintain a secure application and avoid breaches
Tools and resources available in the Elixir and Phoenix ecosystem to enhance security
The Guardian library for authentication and authorization
Take a drink every time someone says "bot"
The difference between "bots" and AI language models
The potential for evolving authentication, such as Passkeys over WebSocket
How Elixir compares to other languages due to its immutability and the ability to trace user input
Potion Shop, a vulnerable Phoenix application designed to test security
Talking Tom, Sneaker Bots, and teenage hackers!
The importance of security awareness and early planning in application development
The impact of open-source software on application security
How to address vulnerabilities in third-party libraries
Conducting security audits and implementing security measures
Links in this episode:
Michael Lubas
Email - michael@paraxial.io
LinkedIn - https://www.linkedin.com/in/michaellubas/
Paraxial.io - https://paraxial.io/
Blog/Mailing List - https://paraxial.io/blog/index
Potion Shop - https://paraxial.io/blog/potion-shop
Elixir/Phoenix Security Live Coding: Preventing SQL Injection in Ecto
Twitter - https://twitter.com/paraxialio
LinkedIn - https://www.linkedin.com/company/paraxial-io/
GenServer Social - https://genserver.social/paraxial
YouTube - https://www.youtube.com/@paraxial5874
Griffin Byatt on Sobelow: ElixirConf 2017 - Plugging the Security Holes in Your Phoenix Application (https://www.youtube.com/watch?v=w3lKmFsmlvQ)
Erlang Ecosystem Foundation: Security Working Group - https://erlef.org/wg/security
Article by Bram - Client-Side Enforcement of LiveView Security (https://blog.voltone.net/post/31)
Special Guest: Michael Lubas.
Released:
Apr 6, 2023
Format:
Podcast episode
Titles in the series (100)
Bryan Joseph on ElixirScript – Elixir Internals: Today on the show we continue our series on the inner workings and various libraries of Elixir and are very happy to welcome Bryan Joseph of Revelry to talk about his very own ElixirScript. ElixirScript is essentially an Elixir to JavaScript compiler, allowing users to run Elixir online more easily. by Elixir Wizards