Need someone to lead product management at your software company? I build high-craft software and the teams that build it. I'm looking for my next opportunity. Check out my resume and get in touch.

This is the blog of Adam Kalsey. Unusual depth and complexity. Rich, full body with a hint of nutty earthiness.

Security & Privacy

Secure Code

Freshness Warning
This blog post is over 22 years old. It's possible that the information you read below isn't current and the links no longer work.

4 Mar 2002

I read a review of what sounds like an interesting book, "Writing Secure Code" by Michael Howard and David LeBlanc. Unfortunately, the review was in an email newsletter and there isn’t a Web version, so I can’t link to it, but here’s an excerpt.

In later chapters, like those on "The Buffer Overrun", "Determining Access Control", "Running with Least Privilege," "Storing Secrets" and others, they deal with what you might call the 10 demons of modern software—the weak coding practices which make the end product vulnerable to attack.

Recently Written

Building the Next Big Thing: A Framework for Your Second Product: Nov 19: You need a first product sooner than you think. Here's a framework for helping you identify a winner.
A Framework for Scaling product teams: Oct 9: The people, processes, and systems that make up a product organization change radically as you go through the stages of a company. This framework will guide that scaling.
My Networked Webcam Setup: Sep 25: A writeup of my network-powered conference call camera setup.
Roadmap Outcomes, not Features: Sep 4: Drive success by roadmapping the outcomes you'll create instead of the features you'll deliver.
Different roadmaps for different folks: Sep 2: The key to effective roadmapping? Different views for different needs.
Micromanaging and competence: Jul 2: Providing feedback or instruction can be seen as micromanagement unless you provide context.
My productivity operating system: Jun 24: A framework for super-charging productivity on the things that matter.
Great product managers own the outcomes: May 14: Being a product manager means never having to say, "that's not my job."

Older...

What I'm Reading

The Advantage: Why Organizational Health Trumps Everything Else In Business by Patrick Lencioni
Stories Sell: Storyworthy Strategies to Grow Your Business and Brand by Matthew Dicks
Soft matter mechanics of baseball’s Rubbing Mud | PNAS at pnas.org
bureaucracy at dhruvmethi.substack.com
Think Faster, Talk Smarter: How to Speak Successfully When You're Put on the Spot by Matt Abrahams
Build: An Unorthodox Guide to Making Things Worth Making by Tony Fadell
Beacon 23 by Hugh Howey
Why GitHub Actually Won at blog.gitbutler.com
Only the Paranoid Survive by Andrew S. Grove
Why UX Fails: The Critical Importance of Staying Focused on Your Primary Customer at medium.com
The Antidote to "Manager Mode" is Actual Management at edbatista.com
Founder Mode at paulgraham.com
B2B Product-Led Growth Non-Negotiable: TEAM Network Effects at elenaverna.substack.com
Decisive: How to Make Better Choices in Life and Work by Chip Heath
The Mindset That Kills Product Thinking at jpattonassociates.com
Vector Search: Understanding + Calculating the Distance Between Vectors at singlestore.com
Management Time: Who’s Got the Monkey? at hbr.org
fish shell at fishshell.com
Time management techniques that actually work at lennysnewsletter.com
The Team that Managed Itself: A Story of Leadership (Empowered Teams) by Christina Wodtke
The 12 Week Year: Get More Done in 12 Weeks than Others Do in 12 Months by Brian P. Moran

Secure Code

Related Reading

Recently Written

What I'm Reading