JSConf 2013 Builders vs Breakers

1,099 views
1,026 views

Published on

Published in: Technology, News & Politics
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,099
On SlideShare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

JSConf 2013 Builders vs Breakers

  1. 1. Builders vs BreakersSaturday, June 1, 13
  2. 2. Hi, I’m AdamSaturday, June 1, 13
  3. 3. Hi, I’m Adam@adam_baldwin@liftsecurity@nodesecuritySaturday, June 1, 13
  4. 4. Hi, I’m Adam@evilpacketSaturday, June 1, 13
  5. 5. Saturday, June 1, 13
  6. 6. Saturday, June 1, 13
  7. 7. Builders BreakersSaturday, June 1, 13
  8. 8. Builders BreakersSaturday, June 1, 13
  9. 9. “Fix your captcha so the value isnt actuallyhidden in the form. (put it in the session andcheck the post) Friend of the fritz..”-AdamSaturday, June 1, 13
  10. 10. Saturday, June 1, 13
  11. 11. “you guys”Saturday, June 1, 13
  12. 12. Basecamp ClassicSaturday, June 1, 13
  13. 13. “xss is not a feature”Saturday, June 1, 13
  14. 14. Feelings?Saturday, June 1, 13
  15. 15. Saturday, June 1, 13
  16. 16. Saturday, June 1, 13
  17. 17. Saturday, June 1, 13
  18. 18. Saturday, June 1, 13
  19. 19. Saturday, June 1, 13
  20. 20. CooperationSaturday, June 1, 13
  21. 21. CommunicationSaturday, June 1, 13
  22. 22. When we listen, really listen, we reveal respect, support,understanding, empathy... We also possess the power to imparta renewed confidence, clarity, and a sense of everything-is-going-to-be-okay when we listen well.- Stephanie Maierhttp://thepot-luck.com/stephaniemaier/all-you-have-to-do-is-listen/Saturday, June 1, 13
  23. 23. Basecamp ClassicSaturday, June 1, 13
  24. 24. http://37signals.com/security-responseSaturday, June 1, 13
  25. 25. http://37signals.com/security-responseSaturday, June 1, 13
  26. 26. http://37signals.com/security-responseSaturday, June 1, 13
  27. 27. So what can I doas a developer?Saturday, June 1, 13
  28. 28. SECURITY.md#How to report issue#Expectations#List of humansSaturday, June 1, 13
  29. 29. http://emberjs.com/security/Saturday, June 1, 13
  30. 30. Self DisclosureofVulnerabilitiesSaturday, June 1, 13
  31. 31. Handling a security failurewell can build trust.Saturday, June 1, 13
  32. 32. A new project basedon what we’ve learnedaboutbuilders vs breakersSaturday, June 1, 13
  33. 33. Node Security ProjectSaturday, June 1, 13
  34. 34. andbang.comSaturday, June 1, 13
  35. 35. Node Security Project?Saturday, June 1, 13
  36. 36. Adam BraultNathan LaFreniereBearMikeal RogersDaniel ShawMajor ContributorsNeal PooleLuca CarettoniSteven Rivas JrArlo BreaultJacopo TarantinoSaturday, June 1, 13
  37. 37. Audit every moduleSaturday, June 1, 13
  38. 38. 31233modulesSaturday, June 1, 13
  39. 39. Fix the broken thingsSaturday, June 1, 13
  40. 40. Report Issues we findSaturday, June 1, 13
  41. 41. Send Pull RequestsSaturday, June 1, 13
  42. 42. Example: HubotSaturday, June 1, 13
  43. 43. Saturday, June 1, 13
  44. 44. Saturday, June 1, 13
  45. 45. Saturday, June 1, 13
  46. 46. Publish the resultsSaturday, June 1, 13
  47. 47. Saturday, June 1, 13
  48. 48. How to ContributeSaturday, June 1, 13
  49. 49. nodesecurity.ioSaturday, June 1, 13
  50. 50. - Respect & understand feelings- Proactively communicate & listen- It’s okay to mess up—it can even buildtrustQuick RecapSaturday, June 1, 13
  51. 51. </PRESENTATION>@adam_baldwin | @LiftSecuritySaturday, June 1, 13

×