Today, I did a talk at The Dutch PHP Conference 2013 on how PHP works under the hood. Click through for the slides!
Today, I did a talk at The Dutch PHP Conference 2013 on how PHP works under the hood. Click through for the slides!
Today, I’m doing a talk at DrupalCon Portland 2013 on Static analysis and code metrics. Here are the slides for that talk. When the videos are posted, I’ll make a followup post that links to it. Click through for the slides!
In the April issue of the PHPArch magazine (also published on her blog), Elizabeth Tucker Long wrote a really interesting editorial piece coining a concept she called Security-Driven-Development. She (quite correctly) identified a problem in the current development community where security has become an after-thought (if it’s thought of at all). This isn’t a new concept, in fact it’s a concept that I and many others have been preaching for quite a while now. However I’ve been coming to realize that I’ve had it wrong the whole time. And I think the entire industry is getting it wrong today.
A few days ago, I posted a video about how to become a better developer. There were a few interesting comments made, but one in particular from the Reddit thread ( http://www.reddit.com/r/PHP/comments/... ) peaked my interest. So I decided to do a reply. Check it out:
In today’s episode, I talk a little bit about what it takes to become a better developer. Nobody will ever expect you to know everything, but you better know how to find it…
I’m trying out a new format with this video. Less scripted, more free-form, and with less visuals. This is not going to replace the other format (which I’m still working on), but instead compliment it from time to time. Let me know what you think in the comments below! Check it out:
It’s been a little while since I’ve posted anything here or on YouTube. I’ve been working on some interesting ideas that hopefully will be pretty decent, so it wasn’t time wasted. But I figured now would be a good time to tell you about some upcoming speaking engagements that I have, and where I’ll be over the next few months. So with no further adue:
About three months ago I decided to start shooting videos teaching programming concepts to put on YouTube. When I first started it, I didn’t think it would take off. In fact, I thought it’d be just another failed attempt at trying something new. But three months, 11 videos, nearly 700 subscribers, over 17,000 views and 1.5 man-months of viewership later, I can’t really complain. I’ve missed a few videos over the past few weeks, and missed another one today. And I feel that you deserve to know why.
Over the past 3 or 4 days there’s been a huge upturn on Twitter and in the community bashing Web and PHP Magazine for giving away T-Shirts (and tweeting a photo) with a double-entendre at PHPUK. A lot of banter going back and forth from those like Cal Evans who went so far as to pledge never to go to another conference sponsored by the magazine, to Stefan Koopmanschap who basically thinks it’s no big deal. (note: these are my interpretations from their posts). I think the whole thing has grown WAY out of proportion…
There’s been a bit of noise in the past week about the proper way to prevent Cross-Site-Request-Forgery (CSRF) attacks. It seemed to have started with this post. There’s been discussion in the comments, and on Twitter about it, and there seems to be several opposing viewpoints on the matter. I want to start off by saying that I agree completely with the post in question. But I figured I’d write a post to explain WHY I agree with it.
Today, I’m doing a talk at PHP Benelux 13 on Password Storage and Attacking in PHP. Here are the slides for that talk, as well as the accompanying GitHub repo that I use throughout the talk. When the videos are posted, I’ll make a followup post that links to it. Without rambling on further, click through for the links!