LINK: Bruce Schneier’s post about Heartbleed

Basically, an attacker can grab 64K of memory from a server. The attack leaves no trace, and can be done multiple times to grab a different random 64K of memory. This means that anything in memory — SSL private keys, user keys, anything — is vulnerable. And you have to assume that it is all compromised. All of it.

“Catastrophic” is the right word. On the scale of 1 to 10, this is an 11.

And Ars is reporting that this affects an estimated 66%, or two-thirds, of the web.

More >

LINK: Rails 4.1.0: Spring, Variants, Enums, Mailer previews, secrets.yml

Yesterday, David Heinemeier Hansson announced the release of Rails 4.1.0:

Rails 4.1.0 might carry a minor version bump, but there’s nothing minor about the bag of goodies it carries. It simply means that upgrading from 4.0.x should be a relatively mild affair as most of the changes are additions or improvements, not backwards-incompatible changes. Let’s go over some of those new goodies.

More >

Rails Composer

I recently decided to make the switch to Pundit in a new application and in doing some reading I came across Rails Composer by Daniel Kehoe. You can quickly create 5 starter applications like:

  • Rails with Bootstrap
  • Rails with Foundation
  • Rails with OmniAuth
  • Rails with Devise
  • Rails with Devise and Pundit

Simply run the command below and follow the prompts.

rails new your-app-name -m https://raw.github.com/RailsApps/rails-composer/master/composer.rb

It is definitely worth a look.

Also, if you find Rails Composer useful then consider supporting Daniel’s work by subscribing to RailsApp where you will find lots of tutorials, like Rails and Bootstrap. He also has an option to try before you buy. That plan is called Hobo.

LINK: Check Your PayPal Subscriptions

Over on the Macdrifter site, Gabe recently recommended that people check their PayPal subscriptions and provided a handy link. I checked today and was surprised to see that there are at least 6 active subscriptions for services I haven’t used in years. Take a minute if you have a PayPal account to check yours. Hopefully you won’t be as alarmed as I was.

Here are localized links for Canada and the USA. If you live elsewhere, just change the 2 character country code in the URL below:

https://www.paypal.com/ca/customerprofileweb?cmd=_manage-paylist

LINK: Solving iOS Battery Drain

I worked on the Genius Bar for almost two years, and the most difficult issue to solve was short battery life. It was extremely difficult to pinpoint the exact reason why someone’s battery was draining.

I made it my mission to discover the specific reasons for iOS battery drainage. This article is a product of my years of research and anecdotal evidence I gathered in the hundreds of Genius Bar appointments I took during my time as a Genius and iOS technician, as well as testing on my personal devices and the devices of my friends.

The Ultimate Guide to Solving iOS Battery Drain is the best article for troubleshooting battery drain on iOS issues that I have read so far. In the end, I implemented a number of the recommendations and also purchased a (Product) Red Mophie battery case for my iPhone.