Honeypot.net logo Honeypot.net

Currently reading: My Struggle: Book 2 by Karl Ove Knausgaard 📚

Now that I’m done with Gaiman’s “Norse Mythology”, it’s back to being enchanted by Knausgaard not quite enjoying anything at all.

We’re nearly 2/3 of the way from Y2K to Y2K38.

That thing you’d been putting off fixing? This would be a great time to start thinking about it again.

When a coworker forwards you an email to ask if it looks like phishing, take a moment to publicly praise them for it. “Jane sent me an example of a new phishing campaign going around. Her instinct to let us know about it was exactly right. Thanks, Jane!” Reinforce the idea that Security has their back and will be pleasant to interact with. That’s how you get them to want to report things.

If you’re writing an SDK, don’t include a section on how to fetch all the pages of chunked results. That’s your job, not theirs. Make that the default interface and provide advanced methods to fetch a page at a time if your user specifically needs to for whatever reason.

Don’t make users write this:

all_results = []
results = sdk.get_items()
all_results.extend(results.items)
while results.has_more:
    results = sdk.get_more_items(results.next)
    all_results.extend(results.items)

Let them write this:

all_results = sdk.get_all_items()

Looking at you, AWS and Dropbox.

I’m testing a new writing workflow to prepare for DEF CON. It looks like:

  1. Type something on my Freewrite Alpha.
  2. It shows up on my blog.

The advantage is that publishing is about as quick and seamless as it can possibly be. The disadvantage is that the published content is raw, first-draft quality. That’s a motivation to write it right the first time.