Michael Lubas on the Future of Elixir Security

Elixir Wizards

Content provided by SmartLogic LLC. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by SmartLogic LLC or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

2y ago 40:30

MP3•Episode home

Fetch error

Hmmm there seems to be a problem fetching this series right now. Last successful fetch was on December 26, 2024 11:48 (4M ago)

What now? This series will be checked again in the next day. If you believe it should be working, please verify the publisher's feed link below is valid and includes actual episode links. You can contact support to request the feed be immediately fetched.

In today's episode of Elixir Wizards, Michael Lubas, founder of Paraxial.io, joins hosts Owen Bickford and Bilal Hankins to discuss security in the Elixir and Phoenix ecosystem. Lubas shares his insights on the most common security risks developers face, recent threats, and how Elixir developers can prepare for the future.

Common security risks, including SQL injection and cross-site scripting, and how to mitigate these threats
The importance of rate limiting and bot detection to prevent spam SMS messages
Continuous security testing to maintain a secure application and avoid breaches
Tools and resources available in the Elixir and Phoenix ecosystem to enhance security
The Guardian library for authentication and authorization
Take a drink every time someone says "bot"
The difference between "bots" and AI language models
The potential for evolving authentication, such as Passkeys over WebSocket
How Elixir compares to other languages due to its immutability and the ability to trace user input
Potion Shop, a vulnerable Phoenix application designed to test security
Talking Tom, Sneaker Bots, and teenage hackers!
The importance of security awareness and early planning in application development
The impact of open-source software on application security
How to address vulnerabilities in third-party libraries
Conducting security audits and implementing security measures

Links in this episode:

Michael Lubas
Email - [email protected]
LinkedIn - https://www.linkedin.com/in/michaellubas/

Paraxial.io - https://paraxial.io/
Blog/Mailing List - https://paraxial.io/blog/index
Potion Shop - https://paraxial.io/blog/potion-shop
Elixir/Phoenix Security Live Coding: Preventing SQL Injection in Ecto

Twitter - https://twitter.com/paraxialio
LinkedIn - https://www.linkedin.com/company/paraxial-io/
GenServer Social - https://genserver.social/paraxial
YouTube - https://www.youtube.com/@paraxial5874

Griffin Byatt on Sobelow: ElixirConf 2017 - Plugging the Security Holes in Your Phoenix Application
Erlang Ecosystem Foundation: Security Working Group - https://erlef.org/wg/security
Article by Bram - Client-Side Enforcement of LiveView Security

Special Guest: Michael Lubas.

190 episodes

#Web Development #Software Development #Elixir #Elixirlang #Phoenix #Webdev #SmartLogic LLC #Tech #Podcasting Education #Web App #Mobile App #JavaScript #Ruby On Rails #Programming #Code #Java