Ibuildings Blog: - ibuildings.nl

Friday, 26 June 2009

DPC 2009 Day 0 - Stefan Esser's Security Crash Course

From the list of tutorials on Day One of DPC 2009, I chose to sit-in on Stefan Esser's Security Crash Course with the idea that it would be a good opportunity for a review. When he displayed one of his introductory slides about the topics he would be covering, there seemed to be no surprises: input filtering, XSS, CSRF, SQL injection, session management and PHP code inclusion and evaluation -- it was a fairly expected list of all those things in an application that can threaten at one time or another to come back and bite a developer on the back-end (or front-end too for that matter). Even though some of the topics on the list already suggested to me certain known risky situations and how to diffuse them, it didn't matter. I was here, after all, for a review, a reality-check, hoping that certain topics such as PHP code inclusion and evaluation would be made even clearer.

It worked like a charm, although, not immediately, not necessarily in that room on that day.

Ga door met lezen van "DPC 2009 Day 0 - Stefan Esser's Security Crash Course"

Geplaatst door Cal Smith in planetphp op 15:52 | Reactie (1) | Trackback (1)

Tags voor deze bijdrage: conference, dpc, dpc09, dutch php conference, security, stefan esser, tutorial

Tuesday, 23 June 2009

Best Practices in Estimating

Part of the mandate for the PHP Center for Expertise inside of Ibuildings is an ongoing series of Business Process Re-Engineering projects. The first of these projects, "Estimating Best Practices", was recently completed and released. It contains the collected best practices from estimators inside Ibuildings, as well as input from external experts and published works.

Our estimating team spent two months thinking and discussing how software companies create estimates; we discussed what works and what doesn't. While the final document itself, along with the accompanying workbook, are available internally only, some of what was learned about the meta process of estimating may be interesting to others. Here are four Best Practices that came out of the process that we want to share with everyone.

Ga door met lezen van "Best Practices in Estimating"

Geplaatst door Cal Evans op 12:44 | Reacties (5) | Trackback (1)

Tags voor deze bijdrage: best practices, enterprise, estimating, ibuildings, pce

Tuesday, 16 June 2009

Sessions at php|tek 2009

This year's php|tek conference was hosted by php|architect just outside Chicago in the US in mid-May. I attended this year as a speaker delivering a number of sessions, and was also able to attend the some of the other sessions on offer at the event. There were some particular highlights of the week.

The first session of the main conference was the opening keynote, "The Future of PHP 6" by Andrei Zmievski. The talk was great but will be forever remembered for Andrei's t-shirt which read "I ? Unicode". With the conference in full swing, we moved on to some of the more technical sessions.

Ga door met lezen van "Sessions at php|tek 2009"

Geplaatst door Lorna Jane Mitchell in planetphp op 14:42 | Reactie (1) | Trackbacks (0)

Tags voor deze bijdrage: community, conference, php architect, phptek, tek09

(Pagina 1 van 1, totaal 3 artikelen)

Ibuildings - Blog - ibuildings.nl

Ibuildings - the PHP Professionals

Blog