8 reasons why I rarely sign an NDA

Now and then, somewhere along the recruiting process for a job, the recruiter will hit me with an NDA. I rarely sign one and in this post, I explain why. »

Author image Raúl Pedro Fernandes Santos on #career, #life,

Covid-19 Russian Roulette

Are we playing russian roulette with our lives and the lives of others? »

Author image Raúl Pedro Fernandes Santos

assertRaises not detecting exceptions in __getattr__

A friend of mine asked for my help to find the cause of a bug he was seeing in a complex Python class he was writing. The class was supposed to raise an exception when a certain method was called but the unit tests were not picking up that exception. I have to confess I was a little stumped at first but simplifying his code to the bare minimum made the problem more evident. »

Basic rules for software deployment

Now and then someone asks my opinion on what is the best way to deploy code to a server. There’s a lot to be said about this subject, so I usually end up disappointing the inquirer because I rarely have a simple answer for them. Like so many other things in life, the best way to do it depends on the exact situation. The scale you’re operating at, the type of servers you use, the type of application you’re deploying, the level of security required, the infrastructure you’re using, etc. »

How to undo a git push --force and undelete things

Today someone asked for my help to undo a git push --force that messed up his production server by overwriting the master branch with something that wasn’t meant to be there. My first advice would be to not deploy to production servers by manually running git pull or git push, but that’s another story and I briefly mention it in my post on basic rules for software deployment. So how would you solve the situation? »

SSL POODLE vulnerability

The recent SSLv3 POODLE vulnerability is a tricky one, because there’s no patch and you actually have to do the hardwork yourself. Luckily it’s not hard. Here are a few resources I found useful: Disabling SSLv3 For POODLE, on Linode’s documentation. Disabling SSLv3 Support on Servers, by the ZMap folks. POODLE Attack and SSLv3 Deployment, also by the ZMap folks. How do I patch/workaround SSLv3 POODLE vulnerability (CVE­-2014­-3566)?, on Ask Ubuntu. »

Author image Raúl Pedro Fernandes Santos