Localhost Podcast

Hello from the internet! In this episode we welcome back Rob and don our black hats to take a look at the world of hacking. Enjoy the show!

Hello from the internet! In this episode we speak to Dylan Schiemann about more things Javascript. Enjoy the show!

Hello from the internet! In this episode we speak to Chris Ferdinandi about all things Javascript Enjoy the show!

Hello from the internet! In this episode we continue our exploration of identity, security and authorisation on the web... Enjoy the show!

Hello from the Internet! In this episode we discuss all that is web authentication and how we got here from the pre-cookie days of the internet! From Basic, to Form to Auth0 and WebAuthN we look at the different ways we can get into websites (legally of course!) Enjoy the show!

Hello from the internet! In this special edition podcast we are coming to you live from cfcamp for the yearly (or so it seems!) CodeMasters Quiz! We recorded a whole show and you can now watch it over at https://localhost.fm/codemasters2018 Enjoy the show!

022 - Payment Providers by Mark Drew and Rob Dudley

Hello from the Internet! We are back with a whole new season of the Localhost Podcast! In this episode we go over what changes we have planned! Enjoy the show!

Hello from the internet! In this special edition of the localhost podcast, we are live at the end of the awesome CFCamp Conference in Munich Germany , pondering and doing a retrospective about all the topics covered! It was a blast! Come join the fun!

Hello from the Internet! In this episode, we expand our discussion to the world of hackathons and Game Jams! Enjoy the episode!

Hello from the internet! In this episode we go retro and look at the origins of JavaScript and how we it has become so ubiquitous in the development of the web Enjoy the episode!

Hello from the internet! In this episode, we continue our walk in the badlands of development as we review the seemingly impossible task of securing our applications. Enjoy the episode!

Hello from the internet! In this episode we will be talking to a very special guest! Steve Streeting! If you are into source control, this episode is for you. Enjoy the episode!

Hello from the Internet In this we count down the OWASP TOP 10 and explore the implications of each of the issues that we should be looking at in securing our applications. Enjoy the show! ## Show Notes - [OWASP](https://www.owasp.org/index.php/Main_Page) - [OWASP TOP 10 for 2017](https://www.owasp.org/images/7/72/OWASP_Top_10-2017_%28en%29.pdf.pdf) ### 10. Logs - Insufficient Logging and Monitoring - https://www.owasp.org/index.php/Top_10-2017_A10-Insufficient_Logging%26Monitoring - Graylog - https://www.graylog.org/ - Logstash (ELK) - https://www.elastic.co/elk-stack ### 09. Components - https://www.owasp.org/index.php/Top_10-2017_A9-Using_Components_with_Known_Vulnerabilities - Safety - Python - https://pyup.io/safety/ - Ruby - http://guides.rubygems.org/security/ - Node - Node Security - https://github.com/nodesecurity/nsp ### 08. Deserialization - https://www.owasp.org/index.php/Top_10-2017_A8-Insecure_Deserialization ### 07. XSS - https://www.owasp.org/index.php/Top_10-2017_A7-Cross-Site_Scripting_(XSS) ### 06. Security Misconfiguration - https://www.owasp.org/index.php/Top_10-2017_A6-Security_Misconfiguration - How to harden a Linux server: - https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-123.pdf - https://medium.com/viithiisys/10-steps-to-secure-linux-server-for-production-environment-a135109a57c5 - https://www.cyberciti.biz/tips/linux-security.html ### 05. Broken Access Control - https://www.owasp.org/index.php/Top_10-2017_A5-Broken_Access_Control - Firesheep - https://codebutler.com/projects/firesheep/ ### 04. XML External Entities - https://www.owasp.org/index.php/Top_10-2017_A4-XML_External_Entities_(XXE) - Billion Laughs Attack - https://en.wikipedia.org/wiki/Billion_laughs_attack ### 03. Sensitive Data Exposure - https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure - PCI DSS - https://www.pcisecuritystandards.org/pci_security/ - GDPR - https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/ - Password Hashing - https://crackstation.net/hashing-security.htm - Best practice for SSL + TLS - https://www.ssllabs.com/ssltest/ - https://hynek.me/articles/hardening-your-web-servers-ssl-ciphers/ - Let's Encrypt - https://letsencrypt.org/ - CipherList - Strong config for Apache / Nginx https://cipherli.st/ ### 02. Broken Authentication - https://www.owasp.org/index.php/Top_10-2017_A2-Broken_Authentication - Horse staple - https://xkcd.com/936/ - NIST - https://www.passwordping.com/surprising-new-password-guidelines-nist/ - Rainbow tables - http://project-rainbowcrack.com/table.htm - Google 2FA - Authy - https://authy.com/ - Duo - https://duo.com/ ### 01. Injection - https://www.owasp.org/index.php/Top_10-2017_A1-Injection - Bobby Tables - https://xkcd.com/327/ - Misc - Nessus - https://www.tenable.com/products/nessus/nessus-professional - OpenVas - http://www.openvas.org/ - ZED Attack Proxy - https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project - zxcvbn: realistic password strength estimation - https://blogs.dropbox.com/tech/2012/04/zxcvbn-realistic-password-strength-estimation/ - Be afraid, be very afraid - https://attack.mitre.org/wiki/Main_Page

Hello from the internet In this develop episode we have the pleasure of talking with Docker Captain Bret Fisher and with Grant Shepert about Docker, how it is used and the upcoming MuraCon Conference! Enjoy the show!

Hello from the internet! In this episode Rob and Mark discuss the use of Version Control and where it comes from, what are the best tactics and where we are going with it! Enjoy the show!

Hello from the internet! In this episode Rob and Mark explore the vast landscape of the "noSQL" category of software. Not Only SQL might not be the best name but we try to get a better handle on what it is. Enjoy the show!

Hello from the internet! In this episode Rob and Mark take a brief look back at Season 1 and what we managed to cover. We then take a sneak peek into what we will be talking about in this year's Season 2 Give us feedback on http://bit.ly/localhostfeedback

Hello from the Internet! In this episode we explore the idea of the "twelve factor application" which allow you to deploy scalabale applications or software as a service type systems.

Hello from the Internet! In this episode we discuss and explore the technical debt that can get stored in our projects. We go over what technical debt is, how it happens, and what we can do to mitigate it!

Hello from the internet! Welcome to Episode 7 of the Localhost Podcast! In this episode we shall be talking about APIs, SOAP, REST, Oh My! I am Mark Drew and sitting in the motorcycle sidecar on this journey through the information super -highway is Rob Dudley!

Hello from the Internet! In this second episode live from CFCamp in Munich we cove the sessions we attended as well as we get a great interview with Michael Hnat, the organiser of CFCamp! Enjoy the show!

Hello from the Internet In this special episode recorded live at CFCamp in Munich,Germany we host a panel quiz show with some of the luminaries of the web development world. We befuddle and confuse Gert Franz, Aaron Benton, Andrew Jackson and Kai Konig with loads of questions about CFML and Web development. Enjoy the show!

Hello from the Internet! In this episode we talk about anything and everything related to conferences: attending, speaking, sponsoring and running. Join as as we explore the topic from start to finish! Show notes Game Developers Conference http://www.gdconf.com/conference/c4p/ cfObjective: http://www.cfobjective.com/ Meetup.com http://meetup.com Defcon Documentary http://gizmodo.com/defcon-a-documentary-about-the-worlds-largest-hacking-1073052701 Tchotchke/Conference Swag: https://en.wikipedia.org/wiki/Tchotchke Papercall: https://www.papercall.io/ Game Developer's Conference Call for Papers: http://www.gdconf.com/conference/c4p/ Charlie Arehart http://www.carehart.org/ Skills Matter: https://skillsmatter.com/ Video Brains: http://videobrains.co.uk/ GamesCom: http://www.gamescom-cologne.com/gamescom/index-9.php Full Stack Conference: https://skillsmatter.com/conferences/8264-fullstack-2017-the-conference-on-javascript-node-and-internet-of-things Half-Stack Conference: http://halfstackconf.com/ Fronteers: https://fronteers.nl/congres/2017 NCDevCon: http://ncdevcon.com/ CFCamp: https://www.cfcamp.org/

Hello from the Internet In this episode Rob and Mark discuss what is Open Source and how it affects our daily developer lives! Show Notes and Links Eric Raymond published The Cathedral and the Bazaar https://opensource.org/ http://contributor-covenant.org/ http://opensourceecology.org/ YouTube playlist! https://www.youtube.com/playlist?list=PLIuX3AJWnMF6s-h1xTQozVBB0g0_h3FIb

Hello from the Internet! In this episode Rob Dudley and Mark Drew talk about the various ways we work, whether it is for a company, freelance, self-employed or being the chairman of the board! Show notes Two Pizza Rule: http://whatis.techtarget.com/definition/two-pizza-rule 5 Monkeys and a Ladder: http://www.wisdompills.com/2014/05/28/the-famous-social-experiment-5-monkeys-a-ladder/ Setting up a Limited Private company: http://www.wisdompills.com/2014/05/28/the-famous-social-experiment-5-monkeys-a-ladder/ Sole trader: https://www.gov.uk/working-for-yourself Future Sync Conference: https://futuresync.co.uk/ CFCamp Conference: https://www.cfcamp.org/ Full Stack Conference: https://skillsmatter.com/conferences/8264-fullstack-2017-the-conference-on-javascript-node-and-internet-of-things cf.objective(): http://www.cfobjective.com/ Develop Conference: http://www.developconference.com/

Hello from the internet! In this episode Mark Drew and Rob Dudley talk about what makes a good developer! From estimations to code comments, from water to tomatoes. And everything in between. Show Notes: Pragmatic Programmer: https://www.amazon.co.uk/Pragmatic-Programmer-Andrew-Hunt/dp/020161622X/ref=sr_1_1?ie=UTF8&qid=1493891782&sr=8-1&keywords=pragmatic+programmer Clean Code: https://www.amazon.co.uk/Clean-Code-Handbook-Software-Craftsmanship/dp/0132350882/ref=sr_1_3?ie=UTF8&qid=1493891812&sr=8-3&keywords=Code+Complete Clean Coder: https://www.amazon.co.uk/Clean-Coder-Conduct-Professional-Programmers/dp/0137081073/ref=pd_bxgy_14_img_2?_encoding=UTF8&psc=1&refRID=W4NC7AEXBNR51PWHN7VG The Pomodoro Technique: https://cirillocompany.de/pages/pomodoro-technique

In preparation for our next episode, we will his like to ask YOU, dear listener, a question: What makes a good developer? We would love to hear your thoughts, opinions and rants so that Rob Dudley and I, Mark Drew, can discuss them at length. So, if you want to send us your comments you can Tweet us @localhostfm Email us on show@localhost.fm Or how about this for an idea, why not use the voice recorder app on your mobile phone to record your answer and email it to us on show@localhost.fm We look forward to hearing from you!

Hello from the Internet! In this episode we delve into the depths of CI. How we do it, why we do it and how it other people do it. Mark makes bad puns and Rob clarifies that it isn't Magnum PI and there are no Ferrari's mentioned at all. Show notes: Jenkins https://jenkins.io/ Cloudy With a Chance of Tests https://github.com/mhenke/Cloudy-With-A-Chance-Of-Tests The Quantum of Deployment https://codeascraft.com/2010/05/20/quantum-of-deployment/ Facebook BitTorrent Deployments https://arstechnica.com/business/2012/04/exclusive-a-behind-the-scenes-look-at-facebook-release-engineering/ DeployBot https://deploybot.com/ Black Box Thinking https://www.amazon.co.uk/Black-Box-Thinking-Marginal-Performance/dp/1473613809/ref=sr_1_1?ie=UTF8&qid=1488107476&sr=8-1&keywords=Black+Box+Thinking Sean Corfield https://twitter.com/seancorfield CI Traffic Light Build Status https://isotope11.com/blog/monitoring-your-continuous-integration-server-with-traffic-lights-and-an-arduino Catlight Status Notification https://catlight.io/ Hubot by Github https://github.com/github/hubot Philips Hue Light Jenkins Plugin https://wiki.jenkins-ci.org/display/JENKINS/hue-light+Plugin Drone CI https://github.com/drone/drone Webpack https://webpack.github.io/ Yak Shaving http://whatis.techtarget.com/definition/yak-shaving Docker Secrets Management https://blog.docker.com/2017/02/docker-secrets-management Kubernetes https://kubernetes.io/ SorryApp https://www.sorryapp.com/ Rate Us on iTunes https://itunes.apple.com/gb/podcast/localhost-podcast/id1199981378?mt=2

Hello from the Internet! In this special develop branch episode we talk to Mark Mandel from Google Cloud Services about Kubernetes, Containers and Gaming!

Hello from the Internet! In this special develop branch episode of the Localhost podcast we have a chat with Geoff Bowers from Daemon Internet Consultants about Docker and how his company is using it.

Hello from the Internet! We are your guides to various aspects of the lovely world of web development! Every month we shall get together, and discuss an aspect of web development. WE shall try to unwrap the subject using questions sent by YOU the listener. This month, we are talking about Docker!