Mark McLoughlin has a nice list of thoughts, ideas, and questions to reflect on in regards to the Heartbleed bug.
- Log structured data in a readable format
- Add a dash of color
- Logs let your app communicate with you and your team
- Seriously though, don’t put exception stack traces in your logs!
- Log URLs for easy access to more context
- Add emotional context to your logs
Most of these are somewhat expected, but I emotional context in logs was definitely new to me. I wonder why I’ve never even thought of this.
- Don’t wait for problems to find you
- Know your tools and your systems
- Prioritize, prioritize, prioritize
- Perform post mortems, but don’t get lost in them
- Document your work
- Fix the problem AND explain
- Make time for yourself
This free online service performs a deep analysis of the configuration of any SSL web server on the public Internet.
Gladly, I was able to devote some time to update yum fast downloader plugin to work much better with recent yum versions in Fedora 19/20. The plugin effectively disabled delta rpm support since the integration of presto into yum. To fix the issue, I reworked the plugin using the new download framework of yum/urlgrabber. The result is yum-fast-downloader plugin for Fedora 20, which not only fixes the problem but also brings better integration. As a result, the plugin is now responsible for almost all downloads including downloading drpm packages.
Besides, it is now possible to specify arbitrary command line arguments (e.g. -q) for aria2c in the plugin’s configuration file.
I've been using Vim for about 2 years now, mostly because I can't figure out how to exit it.
— I Am Devloper (@iamdevloper) February 17, 2014
If you haven’t heard about The Heartbleed Bug yet, here is your chance. This page describes it nicely in not too technical detail. Let’s get a few quotes to get you started:
The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet. SSL/TLS provides communication security and privacy over the Internet for applications such as web, email, instant messaging (IM) and some virtual private networks (VPNs).
The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content. This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users.
That doesn’t just sound nasty. IT IS!