Skip to content

Instantly share code, notes, and snippets.

View bermannoah's full-sized avatar

Noah Berman bermannoah

44 followers · 22 following
View GitHub Profile
@bermannoah
bermannoah / gist:bdd64240aed67677668b96049d02e564
Created April 17, 2023 12:17 — forked from atoponce/gist:07d8d4c833873be2f68c34f9afc5a78a
Cryptographic Best Practices

Cryptographic Best Practices

Putting cryptographic primitives together is a lot like putting a jigsaw puzzle together, where all the pieces are cut exactly the same way, but there is only one correct solution. Thankfully, there are some projects out there that are working hard to make sure developers are getting it right.

The following advice comes from years of research from leading security researchers, developers, and cryptographers. This Gist was [forked from Thomas Ptacek's Gist][1] to be more readable. Additions have been added from

@bermannoah
bermannoah / rails_setup.md
Last active March 20, 2017 03:49 — forked from ryanflach/rails_setup.md
Common setup for a new Rails project
  1. rails new <project_name> -d postgresql --skip-turbolinks --skip-spring -T
  • -d postgresql sets up the project to use PostgreSQL
  • --skip-turbolinks & --skip-spring creates a project that does not use turbolinks or spring
  • -T skips the creation of the test directory and use of Test::Unit
  1. In the Gemfile:
  • Available to all environments:
    • gem 'figaro' - store environment variables securely across your app (docs)
    • Uncomment gem 'bcrypt', '~> 3.1.7' if you will be hosting your own user accounts with passwords (docs)
  • Inside of group :test:
    • gem 'rspec-rails' - user rspec in place of minitest (docs)
@bermannoah
bermannoah / prework.md
Last active August 11, 2016 13:15 — forked from mbburch/prework.md
Noah Berman's Turing School Prework Gist