46. Login Continue
The number of customers purchasing went
up by 45%. The extra purchases resulted in
an extra $15 million the first month. For the
first year, the site saw an additional
$300,000,000.
47. Login Continue
The number of customers purchasing went
up by 45%. The extra purchases resulted in
an extra $15 million the first month. For the
first year, the site saw an additional
$300,000,000.
51. Always codeas if the person who
ends up maintaining your code is a
violent psychopath who knows
where you live.
http://c2.com/cgi/wiki?CodeForTheMaintainer
52. File > New
is cheep, easy, and doesn’t cost anything
53. File > New
is cheep, easy, and doesn’t cost anything
everything else is “maintenance”
70. The Open Web Application Security Project
owasp.org
1. Injection
2. Broken authentication and session management
3. Cross-site scripting (XSS)
4. Insecure direct object reference
5. Security misconfiguration
6. Sensitive data exposure
7. Missing function level access control
8. Cross-site request forgery
9. Using components with known vulnerabilities:
Heartbleed and Shellshock in action
10. Unvalidated redirects and forwards
71. The Open Web Application Security Project
owasp.org
72. The Open Web Application Security Project
owasp.org
http://msdn.microsoft.com/security/
Knight Capital wrote trading software
billions of billions of dollars of transactions through their system everyday
They would take large transactions and break them up in to smaller transactions to be more efficient.
in 2012, made a change to their software.
Repurposed a flag from 8 years ago.
Tested rigorously.. and it worked, everything worked.
Deployment time came – over night, everything looked good.
The market opened and this happened..
Lost $440 Million loss in 45 minutes.
Not because of a bug in the code, but because the updates were updated to 7 of their 8 servers. So the 8th server was going down this old code path and doing bad things..
They went bankrupt in 45 minutes
They were so large, they were considered a “Market Mover” – so when they were working wrong, others were following their lead, so they had massive fines in addition to going bankrupt
Knight Capital wrote trading software
billions of billions of dollars of transactions through their system everyday
They would take large transactions and break them up in to smaller transactions to be more efficient.
in 2012, made a change to their software.
Repurposed a flag from 8 years ago.
Tested rigorously.. and it worked, everything worked.
Deployment time came – over night, everything looked good.
The market opened and this happened..
Lost $440 Million loss in 45 minutes.
Not because of a bug in the code, but because the updates were updated to 7 of their 8 servers. So the 8th server was going down this old code path and doing bad things..
They went bankrupt in 45 minutes
They were so large, they were considered a “Market Mover” – so when they were working wrong, others were following their lead, so they had massive fines in addition to going bankrupt
Knight Capital wrote trading software
billions of billions of dollars of transactions through their system everyday
They would take large transactions and break them up in to smaller transactions to be more efficient.
in 2012, made a change to their software.
Repurposed a flag from 8 years ago.
Tested rigorously.. and it worked, everything worked.
Deployment time came – over night, everything looked good.
The market opened and this happened..
Lost $440 Million loss in 45 minutes.
Not because of a bug in the code, but because the updates were updated to 7 of their 8 servers. So the 8th server was going down this old code path and doing bad things..
They went bankrupt in 45 minutes
They were so large, they were considered a “Market Mover” – so when they were working wrong, others were following their lead, so they had massive fines in addition to going bankrupt
Work should be meaningful & safe
The most important thing you can do as a leader is to, be wrong.. or to not know.. and to be OK with that.
News is Just News – How Fascinating
Joshua Kerievsky Keynote at the Agile 2016 Conference
Joshua Kerievsky Keynote at the Agile 2016 Conference
Joshua Kerievsky Keynote at the Agile 2016 Conference