StatusCode Weekly Issue 31: September 10, 2015

Issue 31 — September 10, 2015

The lead developer of ‘curl’ reflects on the state of HTTP/2.

Daniel Stenberg

A look at the work and process flows behind building monolithic applications and how microservices sprang out of such concerns and economies of scale.

Phil Calçado

How Agari Uses Airbnb's Airflow as a Smarter Cron

A look at the motives behind moving from Linux cron to a dedicated workflow scheduler, Airbnb’s Airflow.

High Scalability

Application monitoring for developers

Opbeat have updated their free ops service, adding response time distributions, a full activity breakdown, the ability to see the actual code that is slowing down the request, where is it called from & when it was committed. Read more

Opbeat sponsored

Measuring Page Weight

What does ‘page weight’ really mean? Is it all the assets loaded up front? Does it include those dynamically added? Ronan Cremin shares some thoughts.

mobiForge

Sleepy Puppy: Cross-Site Scripting Payload Management for Webapp Security Testing

Sleepy Puppy is a XSS payload management framework that enables security engineers to simplify the process of capturing, managing, and tracking XSS propagation over long periods of time and numerous assessments.

The Netflix Tech Blog

The Web in India: 2G Is Still Massive

Googler Paul Kinlan has been in India and notes that even connections that are nominally 3G can be slower than 2G.

Paul Kinlan

Prefetching, Preloading, Prebrowsing

The practice of guessing what users need so assets can be fetched ahead of time has been called ‘prebrowsing’ and it’s formed of several techniques which Robin summarizes here.

Robin Rendle

The Critical Rendering Path - An In-Depth Guide

A look at the series of events that must take place to render the initial view of a page.

Patrick Sexton

Jobs

Freelance with Companies like Airbnb, IDEO, & JPMorgan

Work with top clients, set your own rates, and work from anywhere as an elite Toptal developer. Join the most exclusive network of top software engineers in the world.

Toptal

In brief

Google.com's page weight now ranges 3.1KB (cell) to 366KB (desktop) news

Ronan Cremin on Twitter

PHP 7.0 Is Showing Very Promising Performance Over PHP 5 news

PHP 7.0 RC2 has just been released and its performance is catching up with HHVM.

Michael Larabel

Serious Bug Causes “Quite A Few” HTTPS Sites to Reveal Their Private Keys news

Ars Technica

Opera Mini 11 for Android’s new compression mode news

Dev.Opera

TLS and Server Hardening with NGINX tutorial

“TL;DR I need a configuration for my NGINX server that has the latest in SSL/TLS support”

I, Moses

Kernel Bypassing for Faster Packet Filtering on Linux tutorial

CloudFlare

New AWS Quick Start – Magento for E-Commerce tutorial

Amazon

Network-based HTTPS Client Identification Using SSL/TLS Fingerprinting

An academic paper

Masaryk University

How HTML5 APIs Can Fingerprint Users

Input Is Evil

Fingerprinting Webapp Platforms by Variations in PNG Implementations

Due to differences in PNG decoder/encoder implementations, it’s possible to provide malformed PNGs to sites and guess what technologies they’re using by the responses.

Dominique Bongard

Electronic Noise Is Drowning Out the Internet of Things opinion

IEEE

The new .NET MISSION: IMPOSSIBLE – ‘Situation Critical’ tools

Find out why ANTS Performance Profiler is the ultimate .NET profiler in a new online adventure. Read it now

Red Gate Sotware sponsored

NATS: Open Source, High Performance Cloud Native Messaging System tools

The core gnatsd server is written in Go, and Apcera maintains official clients for Go, Node, and Ruby.

Apcera

NAXSI: A High Performance, Low Rules Maintenance WAF for NGINX code

NAXSI stands for ‘Nginx Anti XSS and SQL Injection’ - it’s a third party NGINX module that acts as a web application firewall with simply defined rules.

NBS System

A Minimal Nginx-uWSGI-Flask-Redis Stack using Docker in under 42MB code

Auke Willem Oosterhoff