Security Questions are not secure
In the US, you would never use your phone number as a security question because anyone could look it up. However, you would have no problem using the SSN as a security question.
Links relevant to my work and interests: IT, agile, startups, Internet, web development, databases, programming, design patterns, work motivation... (Popular topics)
In the US, you would never use your phone number as a security question because anyone could look it up. However, you would have no problem using the SSN as a security question.
Some HTTP headers that are not fully implemented or specified but could lead to a simpler CDN configuration and better performance
I don’t live to work anymore, I work to live.
And then the Internet would be elegant again.
Front-end engineering once again evolved at a feverish pace in 2017. Here is a list of the most notable events of the past year.
Varje plötslig inblandning i andra människors ansvarsområden gör att deras upplevelse av att ha mandat förstörs.
Forget about Agile and Scrum on the team level. Start with the org. Visualize the work as it is really happening ... with all the gnarly dependencies. Have 150 person stand ups if that is the true size of the team.
It’s these images that are often one of the biggest digital assets
a special variant of our full-color logo that is only 305 bytes, compared to our existing logo at ~14,000 bytes
We wanted to see how it might look to skip a few steps in the product development lifecycle and instantly translate our sketches into a finished product.
the pull-to-refresh mechanism ... rapidly became one of the most addictive and ubiquitous design features in modern technology
If users are powerless, designers are not doing their job.
In general, drug dealer references making sense in your product is a sign of a problem
In this classic episode of Computer Chronicles, host Stewart Cheifet explores the newly-released Windows 95
I hope to inspire some people to also get involved in the tech world, and that it’s really not as scary as it seems.
Exceptions are rescued and automatically reported to your favorite reporting service. In development and test environments, exceptions are raised so you can fix them.
The little revenue from selling something unique to a specific customer doesn’t even come close to the lifetime cost of maintaining this functionality
Två tredjedelar av de svenska internetanvändarna söker eller tittar på bostad på internet.
Great products are born only when the core features are the team’s main focus, and iterations and improvements are part of the team’s culture. The key is adding value, and not just marking more V’s in the checklist.
Relax! You’re talking to a human, who is sitting in front of you, being very kind to answer all of your nosey questions.
Whether you like it or not, whether you approve it or not, people outside of your design team are making significant design choices that affect your customers in important ways.
Error messages are a great opportunity to improve user experience, share your brand voice and personality. Pay attention to all aspects of a good error message
Your website can make use of a few similar new pieces of WebKit API introduced in iOS 11 to take full advantage of the edge-to-edge nature of the display.
I den här första versionen av boten så kan vi förutom de förväntade datapunkterna så som pris och vem som köpt och sålt, även visa ut om det gjorts någon annan bostadsaffär i närheten. Beroende på datat så vinklas artiklarna olika
A lot of (web) developers use a local .dev TLD for their own development.
In Chrome 64, autoplay will be allowed when either the media won’t play sound, or the user has indicated an interest in the media
On October 10th, we are very happy to welcome Woody Zuill to us at Dynabyte! Mob Programming: A Whole Team Approach
Enable developers to set and enforce limits on network usage by nested contexts (i.e. iframes).
The Facebook malware that spread last week was dissected in a collaboration with Kaspersky Lab and Detectify
EMD occurs one day a month, per project, where we take the time to update dependencies, do risk assessment and look at our current technical debt.
Den 1 september kommer du kostnadsfritt att kunna ladda ner skalriktiga flygbilder (ortofoton) ur ett rikstäckande lager från 50- och 60-talet samt ur ett påbörjat lager från 70- och 80-talet. Dessa bilder blir då öppna data.
The free and open-source tutorial to learn all around GraphQL to go from zero to production.
Contributing to the software you already use isn’t altruistic—it’s an investment in the tools your company relies on. And you can always start small: spend two hours every Friday working on an open source project relevant to your business
Hulu did away with the grid setup on its home screen. Instead, it serves up viewers a personalized assortment of shows–a product of user-set preferences and a machine-learning algorithm.
Intelligent Tracking Prevention is a new WebKit feature that reduces cross-site tracking by further limiting cookies and other website data.
Om människor som känner motstånd mot att resa plötsligt får tillgång till självkörande fordon kanske fler väljer att bosätta sig utanför innerstaden och då stiger priserna där
The Noflake Manifesto proposes that we have reached a point where there is no longer any excuse for [Snowflake Servers] servers to exist.
The first problem with a snowflake server is that it’s difficult to reproduce.
In the old way of doing things, we treat our servers like pets, for example Bob the mail server. If Bob goes down, it’s all hands on deck. The CEO can’t get his email and it’s the end of the world. In the new way, servers are numbered, like cattle in a herd. For example, www001 to www100. When one server goes down, it’s taken out back, shot, and replaced on the line.
regl is a new functional abstraction for wegbl.
How to draw 100,000 points and a basic approach to animating them. However, with these same ideas, you can do even cooler animations when you start using different layouts.
One way to make your organization irresistible is to create a culture of engagement. This type of work environment enables the three core elements of work engagement: vigor, dedication, and absorption
Drygt en tredjedel av respondenterna säger sig ha eller fundera på att installera en reklamblockerare som resultat av reklamen
If you’re using Chrome, take a moment to download another browser and incorporating it into your routine.
Om man arbetar väldigt hårt med huvudet verkar det som om det beslutsfattande bränslet tar slut. Det måste man sova bort, eftersom sömnen återställer hjärnan.
People can get some of their most important work done outside of work, when they’re free to think and ponder.
I’ve always wondered why we wear a mask when we’re at work. Why should I be one person at home and a completely different person at work? It makes no sense.
– Hela vår utbildning handlar om att våga blotta sig själv, om att hitta ett klimat där elitistiska individer vågar tänja på gränser och bjuda på misstag. Vi ska rädda livet på varandra.
Content-heavy apps use nested scrolling with horizontal lists. While that’s not wrong, it’s implementation must be done correctly
Det är inte självklart hur Alexa och de andra borde reagera när hon stöter på internets värsta troll, de sämsta sidorna av mänskligheten, eller bara fulla, fnittriga tonåringar som inte kan komma på något bättre att göra med sin torsdagsnatt än att säga obsceniteter till ett datorprogram.
Some emojis that I use most frequently while communicating on WeChat, but do not really have equivalents on Western messengers like Facebook Messenger and iMessage
Creativity allows us to take the data we have, question our starting assumptions about what the data is telling us, and experiment until we make something useful out of it.
Researchers believe there is a 50% chance of AI outperforming humans in all tasks in 45 years and of automating all human jobs in 120 years
The truth is community isn’t on the decline, it’s just different. It is once again evolving. Community has transcended borders.
I’ve identified 6 key moments with voice UI that visual feedback is important: powering on, listening, thinking, speaking, adjusting volume, and being placed on mute.
A free video training course from security expert Troy Hunt that teaches you all about EU GDPR and how to comply.
How can we as a team complete the most important user story before the next meeting?
Getting to that point has taken years of work. As of now, HTTPS is the default on all Q&A websites
Not every piece of data on the page is critical to the user experience. The front-end of your site (i.e. front-end applications, templates, and user interface) needs to be designed to tolerate service outages.
De reglerna gäller inte på kreativitet. Man måste släppa på produktivitetshetsen, men det har företag så förbannat svårt att lära sig.
NIST now recommends that we no longer force periodic password changes and we no longer should force complexity requirements.
Till skillnad från traditionell annonsering fokuserar native advertising också på att ge mottagaren ett mervärde, snarare än information om priser, produkter och tjänster
Nya saker fascinerar oss. Även nya arbetssätt och ny teknik. Men när vi tvingas möta det nya utan att få behålla tryggheten i det vi är hemtama med så blockeras vår nyfikenhet.
Gixy is a tool to analyze Nginx configuration. The main goal of Gixy is to prevent security misconfiguration and automate flaw detection.
Success is simply a continual failure to crash
MP3 is supported by everything, everywhere, and is now patent-free.
Let’s dig into it and find out why so many people use dangling commas.
Ask yourself, is this valuable enough?
By disclosing the station at the scale appropriate for the user, it makes learning about the station more manageable.
Some common missteps, shows why good avatar design matters, and lays out real-world examples of better avatars in action
Because Apple hasn’t implemented PWA technologies in Safari and functionally prevents others from doing so, the expectations of iOS users regarding the web are set low
Spotifys betaversion var från början en pirattjänst. Det som distribuerades var mp3-filer som de anställda råkade ha på sina hårddiskar.
A service mesh is a dedicated infrastructure layer for making service-to-service communication safe, fast, and reliable.
a service mesh is a layer that manages the communication between apps (or between parts of the same app, e.g. microservices)
If your software developers are able to accurately estimate how long something will take, you should fire them
Kan man beställa hem mat med rent samvete? Min förhoppning är att den här texten ska hjälpa dig att själv svara på den
Det var säljarna som frågade mig om man kan hitta på något "kul" ... för att sticka ut lite på Hemnet
You should be able to cycle through alternatives by repeatedly hitting Ctrl+R
It’s easy for us designers to just slap a gender question that says Male/Female in there — and make it mandatory — because our marketing department needs that data to sell stuff.
I haven’t been able to reproduce this until now. So what you do is simply to double-tap the home-button. Not double-press it like the gesture for opening the app-switcher, but a light tap, like double-tapping the screen.
Our phones are getting bigger, but our hands don’t.
The following four images show how far you can travel from downtown Seattle by foot, bicycle, public transit, and car. Green, yellow, orange, and red represent a travel time of less than 15, 30, 45, and 60 minutes.
Showcase of the best oops pages
Preload resources you have high-confidence will be used in the current page. Prefetch resources likely to be used for future navigations across multiple navigation boundaries.
It may choose to block all advertising that appears on sites with offending ads, instead of the individual offending ads themselves.
A tool that detects ads the same way humans would, by looking at things like container sizes, icon graphics and words like "Sponsored."
people outside of your design team are making significant design choices that affect your customers in important ways. They are designing your product. They are designers.
teens and young people don’t like to share links anymore as they know the targets will be filled with ads; so instead they share screenshots. This stops the site from receiving any further traffic. Second, it drives people to install ad blockers.
Look around you while you read this: do you honestly think your team is as diverse as it could be, or do you sometimes feel like you work in a bubble?
The world is diverse. Companies just cannot afford not being. The future demands it.
If hotels tested rooms on groups of consumers who were drunk, or stressed, or deprived of sleep for twenty-four hours, I’m certain they’d rethink everything.
Every culture has its myths and prophecies. For Linux users, it was "The Year of The Linux Desktop."
In its ruggedness and lack of concern to look comfortable or easy, Brutalism can be seen as a reaction by a younger generation to the lightness, optimism, and frivolity of today’s webdesign.
Västerås, Eskilstuna och Katrineholm. Redan nästa år kommer var och en av städerna att ha ett nytt datacenter från Amazon Web Services
A look at the challenges and techniques for optimizing your site on large-scale displays
An empty DIV with a standard background-image, except that it has a height of zero and a padding-bottom of 56.25%
Learn the fundamentals of header bidding in depth: what it is, why it matters, how it works, how to implement it, and much more.
Dröjsmålskostnaden kan uttryckas som svaret på frågan: "Vad förlorar vi varje dag på att inte ha genomfört förändringen än?"
Your users don’t care if your design is unique or not. They just want it to work for them
Don’t ask how you’re going to pay your rent working ethically. Ask why you’re open to behaving unethically in the first place.
I started wondering how would it be to put together S3 and Lambda to generate a static website. Certainly, I wanted to use the Contentful Delivery API as the content source
PRPL is a pattern for structuring and serving Progressive Web Apps (PWAs), with an emphasis on the performance of app delivery and launch
Vi ville hitta ett nytt och roligt sätt att undervisa i datasäkerhet. Studenterna lär sig så oerhört mycket mer om de får testa själva och inte bara läsa sig till vilka problem de ska undvika.
Miele went full Internet-of-Things with a dishwasher, gave it a web server and now finds itself on the wrong end of a bug report and it’s accused of ignoring the warning.
How much time do people spend in meetings, on the phone, and responding to e-mails? At many companies the proportion hovers around 80%, leaving employees little time for all the critical work they must complete on their own.
Confirmshaming is the web equivalent of the retail store worker that not only doesn’t leave you alone when you say you’re "just browsing," but says the clothes you’re wearing are ugly
Instagram noticed I had taken a screenshot and gently nudged me to use the proper share features
Symantec allowed at least four parties access to their infrastructure in a way to cause certificate issuance, did not sufficiently oversee these capabilities as required and expected, and when presented with evidence of these organizations’ failure to abide to the appropriate standard of care, failed to disclose such information in a timely manner or to identify the significance of the issues reported to them.
många saker utformas utan att vi riktigt tänkt över hur de ska uppfattas, vilka som ska använda dem och vad det är vi egentligen vill uppnå
100vh is computed for when the browser interface is hidden, after a scroll
We should be thinking of stories as just one method of building a shared understanding and not the outcome.
Build a GraphQL Content API in Minutes
We can actually treat this as probabilities from switching between languages and say something about what the future language popularities will be
En medarbetares konto har kommit på villovägar och uppenbarligen hamnat i orätta händer.
We couldn’t control the code of Reddit’s algorithms. But we still wanted to influence how that system works
The card is a user interface component that acts as an entry point to more detailed information.
Maybe that’s one of the reasons millennials love it
ACID transactions and SQL semantics, without giving up horizontal scaling and high availability
En mötesplats för svenska digitala nomader där vi kommer att samla tips, fakta och inspiration för dig som vill ut och uppleva världen och samtidigt jobba på distans.
By applying a simple structure and some basic formatting, you can dramatically improve the appearance, readability and experience of your release notes using nothing more than the plain text characters at your disposal.
The delay, it turns out, is meant to build customers’ confidence in the product to which they just entrusted all their financial information.
A source of regularly used Input-Patterns
Let’s learn how autofill works, how to build forms that support cross browser autofill, and take advantage of new features like scanning credit cards.
Once you give yourself permission to produce shitty work, only then will great results come
It would be an oversight for an organization to treat social media as nothing more than an opportunity for customer service enquiries, help requests and brand advocacy
Our edge servers were running past the end of a buffer and returning memory that contained private information such as HTTP cookies, authentication tokens, HTTP POST bodies, and other sensitive data
Scientific thinking is timeless. Form a hypothesis, then test it. In addition, this could have helped the team understand if the animation was useful or not.
A great company culture drives employees to put forth their best work. We don’t put our values on a shelf to look at every now and then; we carry them out every day, and it will show through in our work.
coders are building robust systems to monitor ongoing changes to government websites. And they’re keeping track of what’s been removed—to learn exactly when the pruning began.
Investment time is time for investment in ourselves, our company, and our community. Primarily this means doing something that interests us. We call the time an investment because when we make an investment, we expect to get a return on that investment.
The Payment Request API is a system that is meant to eliminate checkout forms. It vastly improves user workflow during the purchase process, providing a more consistent user experience and enabling web merchants to easily leverage disparate payment methods.
Researchers have recently developed the first reliable technique for websites to track visitors even when they use two or more different browsers. This shatters a key defense against sites that identify visitors based on the digital fingerprint their browsers leave behind.
Vi har nu fått ett internet där företag via domstol kan förelägga en operatör att blockera sidor på internet - annars blir det böter
...many of the researchers warned him that the coming revolution in AI would eliminate far more jobs far more quickly than he expected.
MRI and CT scans are all delivered in DICOM format. Free programs can be used to get images and even 3D models from that. Unity can be used to view those in VR. It can be done fairly easily, and the longer you take to make it, the more people suffer or die from what will eventually be outdated 2D screen diagnosis.
Slack has known that people wanted discussions to appear in clusters. It just wanted to do it right rather than do it quickly.
A few best practices allow designers to create more effective, clearer navigation experiences.
This article explains what secure headers are and how to implement these headers in Rails, Django, Express.js, Go, Nginx, and Apache.
React Native allowed product teams to ship features faster to both our iOS and Android apps.
The goal of trails is to construct not only a window into web content but a narrative of user activity
Här finns tips på verktyg, träffar och litteratur för dig som vill lära mer om att koda med barn. Vi tipsar även om olika initiativ och arrangemang för barn och unga som vill koda.
Abstractions fail. Sometimes a little, sometimes a lot. There’s leakage. Things go wrong
Tyvärr hjälper det inte särskilt mycket att stänga av kakor för vi ser redan nu att web beacons används flitigt för att fånga upp de fall där kakor är avstängda. Det finns dessutom flera andra metoder som man kan använda istället.
Using qualitative data analysis of the survey responses given by 181 participants, we identified 49 potential consequences of unhappiness while developing software.
February 1st! In dedication to the @GitLab outage of February 1st 2017!
It will very shortly become "the norm" rather than the exception it so frequently was in the past
This is the story of how we managed to bring roughly 2000 pages and 40 authors onto a technology stack made for hackers.
The guidelines Microsoft REST APIs SHOULD follow so RESTful interfaces are developed consistently
Use your Facebook account to provide additional authentication as part of the recovery process at GitHub.
One of Europe’s top hotels has admitted they had to pay thousands in Bitcoin ransom to cybercriminals who managed to hack their electronic key system, locking hundreds of guests out of their rooms until the money was paid.
A list of everything that could go in the <head> of your document
It will monitor when a web font is applied to the page and notify you. It does not limit you in any way in where, when, or how you load your web fonts.
The best way to get into the mobile mind-set is setting and adhering to a strict performance budget: establishing a target for the final website’s speed and size
Ni föddes in i en värld med 200 nationer, och ni kommer att dö i en värld av 600 superstäder som står för nästan all ekonomisk aktivitet.
A truly tappable UI is built with elements that are at minimum around 10mm, with the optimum touch element size around 13mm
Launching a product, and iterating a product, are two very different things and they require the team to think and operate in very different ways.
Usability was no longer enough. We had to step forward into the new world of user experience and emotional & persuasive design.
To avoid UX burnout, it’s important to remember to take time away from the computer and the sketch books. Read a book. Go for a swim. Take a weekend off. Your creative brain will thank you.
Why do we show users the URL at the very top of every page? Is that the UI we would design if web browsers were invented today?
...both good guys and bad guys alike will take advantage of the offer and obtain HTTPS certificates for their websites
Removing this early accountability towards security will deny your team culture from appreciating an entire area of debt they’ll face later on.
Laboratoria is a social enterprise giving young women in Peru a five-month fast-track course in coding, readying them for a job in the country’s burgeoning tech sector where demand for their skills exceeds supply but fewer than 10% of professionals are women.
if an attacker has full control of a block of pixels, he can make those pixels look like anything he wants, including the UI of the application itself
Animation is no longer just for delight; it is one of the most important tools for successful interaction.
Transform plain text into dynamic blogs and websites using the latest web technologies. A React.js static site generator.
The about:blank is a very special URL that sometimes gets confused and it does not know where it belongs to.
CSCI 2100: Unlearning Object-Oriented Programming
If a user experience needs an explanation, something is fundamentally broken. Consider redesigning the experience until people no longer need it explained to them.
Failed to make interfaces that are usable, failed to make software that is intuitive, and failed to make products that normal people can understand.
Strings which have a high probability of causing issues when used as user-input data.
It enables dynamic loading of ECMAScript modules and is explained in this blog post.
Worrying about the hosting costs you might incur if a horde of zombie toasters decide to attack your service doesn’t need to be one of them
Men in tech who don’t code are presumed to be coders, and women in tech who do code are presumed to be "marketing chicks."
Overcoming impostor syndrome is not the issue for the vast majority. The real struggle is to not feel intimidated and diminished by assholes
After more than ten years, I’m finally ready to believe I’m a good programmer. Just like people kept telling me all along.
The open-source Trello-like kanban (built with Meteor)
We’re providing access to anonymized data from over 2 billion trips to help improve urban planning around the world
Because many apps are only designed with English in mind, some design details can get lost in translation if you’re not careful.
Training an artificial neural network to play MarioKart 64. It had been a few years since I’d done any serious machine learning, and I wanted to try out some of the new hotness (aka TensorFlow) I’d been hearing about.
Elon listens, answers personally, and makes changes at an incredible speed. That is one of the reasons he is so successful.