While at NDC, Carl and Richard chat with Justin James about his deployment tool chain of NuGet, Chocolatey, Boxstarter and Vagrant. Each of these tools builds on the other, starting at the lowest level with specific libraries, working up through package managers, configuring operating systems, even provisioning cloud services. Justin talks about using the tools to get you to a configuration-as-code scenario, making installation not only reliable, but fast. There are lots of different ways to get to a reliable and efficient deployment solution - here's another one!
Links from the Show
Justin James is a software craftsman with over 15 years of experience building applications in ASP.NET, C#, HTML 5, and AngularJS. He has built everything from small utilities to web sites that had more than a million views and 20,000 users per month. Justin loves to share knowledge that he has gained to help someone get to their end goal faster. He has presented at several user groups in the Phoenix, Arizona area; code camps in Las Vegas, Arizona and California; Nebraska Code and Codepalousa Conference.
While at NDC in Oslo, Carl and Richard talk to Troy Hunt about all the scary stuff going on in security today. The conversation starts out recapping some discussion on passwords - how do we get past them? Troy also digs into the on-going issues of SQL Injection, still the number one security risk for web sites. You can still use Google to find vulnerable web sites, and there are great free tools out there to find and exploit insecure SQL databases - don't be one of them! The discussion turns to Strict Transport Security, making sure SSL is on all the time for a web site. Still gotta fix the basics, but new capabilities are coming!
Links from the Show
Troy Hunt is a Pluralsight author, Microsoft MVP and world-renowned internet security specialist. He spends his time teaching developers how to break into their own systems before helping to piece them back together to be secure against today’s online threats. He’s also the creator of “Have I been pwned?”, the free online service for breach monitoring and notifications. Troy regularly blogs at troyhunt.com from his home in Australia.