Elixir Wizards

Michael Lubas on the Future of Elixir Security

Listen Later

In today's episode of Elixir Wizards, Michael Lubas, founder of Paraxial.io, joins hosts Owen Bickford and Bilal Hankins to discuss security in the Elixir and Phoenix ecosystem. Lubas shares his insights on the most common security risks developers face, recent threats, and how Elixir developers can prepare for the future.

  • Common security risks, including SQL injection and cross-site scripting, and how to mitigate these threats
  • The importance of rate limiting and bot detection to prevent spam SMS messages
  • Continuous security testing to maintain a secure application and avoid breaches
  • Tools and resources available in the Elixir and Phoenix ecosystem to enhance security
  • The Guardian library for authentication and authorization
  • Take a drink every time someone says "bot"
  • The difference between "bots" and AI language models
  • The potential for evolving authentication, such as Passkeys over WebSocket
  • How Elixir compares to other languages due to its immutability and the ability to trace user input
  • Potion Shop, a vulnerable Phoenix application designed to test security
  • Talking Tom, Sneaker Bots, and teenage hackers!
  • The importance of security awareness and early planning in application development
  • The impact of open-source software on application security
  • How to address vulnerabilities in third-party libraries
  • Conducting security audits and implementing security measures

    • Links in this episode:

    Michael Lubas

    Email - [email protected]
    LinkedIn - https://www.linkedin.com/in/michaellubas/

    Paraxial.io - https://paraxial.io/

    Blog/Mailing List - https://paraxial.io/blog/index
    Potion Shop - https://paraxial.io/blog/potion-shop
    Elixir/Phoenix Security Live Coding: Preventing SQL Injection in Ecto

    Twitter - https://twitter.com/paraxialio

    LinkedIn - https://www.linkedin.com/company/paraxial-io/
    GenServer Social - https://genserver.social/paraxial
    YouTube - https://www.youtube.com/@paraxial5874

    Griffin Byatt on Sobelow: ElixirConf 2017 - Plugging the Security Holes in Your Phoenix Application

    Erlang Ecosystem Foundation: Security Working Group - https://erlef.org/wg/security
    Article by Bram - Client-Side Enforcement of LiveView Security

    Special Guest: Michael Lubas.

    ...more
    View all episodesView all episodes
    Download on the App Store
    Elixir WizardsBy SmartLogic LLC
    • 4.9
    • 4.9
    • 4.9
    • 4.9
    • 4.9

    4.9

    22 ratings

    More shows like Elixir Wizards

    View all
    Software Engineering Radio - the podcast for professional software developers by se-radio@computer.org

    Software Engineering Radio - the podcast for professional software developers

    274 Listeners

    The Changelog: Software Development, Open Source by Changelog Media

    The Changelog: Software Development, Open Source

    284 Listeners

    Software Engineering Daily by Software Engineering Daily

    Software Engineering Daily

    621 Listeners

    Python Bytes by Michael Kennedy and Brian Okken

    Python Bytes

    215 Listeners

    Syntax - Tasty Web Development Treats by Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers

    Syntax - Tasty Web Development Treats

    987 Listeners

    CoRecursive: Coding Stories by Adam Gordon Bell - Software Developer

    CoRecursive: Coding Stories

    189 Listeners

    Elixir Outlaws by Elixir Outlaws

    Elixir Outlaws

    24 Listeners

    The Stack Overflow Podcast by The Stack Overflow Podcast

    The Stack Overflow Podcast

    62 Listeners

    Thinking Elixir Podcast by ThinkingElixir.com

    Thinking Elixir Podcast

    33 Listeners

    Beam Radio by Lars Wikman

    Beam Radio

    11 Listeners

    Software Unscripted by Richard Feldman

    Software Unscripted

    26 Listeners

    Oxide and Friends by Oxide Computer Company

    Oxide and Friends

    47 Listeners

    Elixir Mentor by Jacob Luetzow

    Elixir Mentor

    2 Listeners

    Risky Business with Nate Silver and Maria Konnikova by Pushkin Industries

    Risky Business with Nate Silver and Maria Konnikova

    261 Listeners

    The Pragmatic Engineer by Gergely Orosz

    The Pragmatic Engineer

    63 Listeners