Digests » 469

sponsor

SSRF Attack Examples and Mitigations

Server-Side Request Forgery along with XSS and CSRF are some of the most serious web security vulnerabilities due to pervasiveness and impact. Strengthen your cybersecurity IQ with these attack and mitigation examples.

this week's favorite

Writing for engineers

Writing is key to have impact in large organizations. As a senior software engineer chances are that writing is the most important skill you have to acquire in order to increase your scope beyond the team and advance your career.

CSS tips you won't see in most tutorials

CSS is designed to enable the separation of presentation and content, including layout, colors, and fonts. This separation can improve content accessibility, provide more flexibility and control in the specification of presentation characteristics, enable multiple web pages to share formatting by specifying the relevant CSS in a separate .css file and reduce complexity and repetition in the structural content.

The ultimate guide to push notifications for developers

What are the benefits of using push notifications and what can you use them for? In this article, Lee Munroe explains how to implement them and which practices are best to follow.

What artists notice

Painters at work notice details we’d ignore. From those details they develop delightful insights into reality. What do I mean? Let’s take a gander at Van Eyck’s “Arnolfini Portrait” to find out.

Design patterns and principles that support large scale systems

Today even small startups may have to work with terabytes of data or build services that support hundreds of thousands of events per minute (or even a second!). By “scale”, we usually refer to a large amount of requests/data/events that the system should handle in a short time period.

books

Free eBook: Try Infrastructure as Code

This ebook is meant to be a step-by-step guide for you to learn how to use some of the most in-demand IaC tools that exist: Terraform, Ansible, Puppet (and Puppet Bolt), Chef, and Salt. Each tool is covered as mostly a stand-alone-project that focuses on deploying a simple Docker-based Python web application from Github.