Short open tags <? will be deprecated in 7.4 and dropped in 8.0. <?= stays available. This RFC by @[email protected] was (as expected) rather controversial, but managed to pass by a narrow margin. wiki.php.net/rfc/deprecate_…

This! People wonder why I care so much about bad security on websites that don't lead to much impact in case of stolen passwords. This is why. Your leaked passwords affect your clients on other sites, sometimes to a much higher degree.

Linday Graham just described WhatsApp as a tool “that terrorists use.” WhatsApp has 1.5 billion active users. You might as well describe oxygen as “a gas that terrorists breathe."

Reasons why companies protect their customers' data: - GDPR - insurance rates - Fear of image loss Reasons why companies SHOULD protect their customers' data: - Because the customers trust them - Feeling responsible - Moral obligation - ...

Ad Blockers.

"A primary cause of complexity is that software vendors uncritically adopt almost any feature that users want."- Niklaus Wirth

Here's what I like to throw at people who ask me to ballpark an estimate: afilina.com/estimation-ath…

I’m 22 years old and I tested positive for COVID-19. I’ve been debating on posting, but I want to share my experience especially with those around my age to help bring awareness, and to relieve any stress/anxiety some may have due to the pandemic.

Estimates just don't work. They never have. It is a lie that we tell for fake comfort. It's not our fault. The world has conditioned us to believe that estimates have some kind of value. When asked to estimate, I usually reply with a confidence factor.

The eight fallacies of distributed computing: 1. The network is reliable; 2. Latency is zero; 3. Bandwidth is infinite; 4. The network is secure; 5. Topology doesn’t change; 6. There is one administrator; 7. Transport cost is zero; 8. The network is homogeneous. — L Peter Deutsch

How I stole the data in millions of people’s Google accounts | by Ethan Elshyeb ethanblake4.medium.com/how-i-stole-th…

"Weeks of coding can save you hours of planning." - Unknown

I *rarely* call out journalists. But this is an exception. Hey Danny Palmer, this article you wrote is everything that is wrong in infosec. zdnet.com/article/why-do… ding ding schools in session! 1/?

Are you an aspiring web developer? Then ignore this list and this guy. I've been a web developer since 1997 and I don't even know some of the words on this list. Do your thing and don't let gatekeepers on Twitter make you feel like an impostor.

OH MY GOD I'd heard about Windows 11 calling a zip file a 'postcode file' in UK English because of really lazy translating but it's ACTUALLY HERE ON MY PC like not even in beta this is actually happening right now in publicly available Windows

"Sanitize user input" is bad security advice. A string can be *escaped* when being inserted into another language like HTML, but correct escaping depends on the target language. There's no such thing as a "sanitized" input. It's impossible to make a string safe for all uses.

Telegram has launched a pretty intense campaign to malign Signal as insecure, with assistance from Elon Musk. The goal seems to be to get activists to switch away from encrypted Signal to mostly-unencrypted Telegram. I want to talk about this a bit. 1/

Steam has a dominant position in the market mostly because it provides a better platform for both the gamers and the developers, not because they do monopolistic tactics like some other alternatives. Those who come up with these lawsuits don't really care about the