declare(encoding='UTF-8'); OPTIMIZE https://www.keycdn.com/blog/cache-control-immutable https://www.keycdn.com/blog/http-cache-headers https://www.keycdn.com/blog/make-a-favicon https://thephp.cc/assets/presentations/2018-scotland-php-optimizing-php-fpm-for-production.pdf opcache_compile_file session_probability = 0 GITHUB https://github.com/Mottie/github-reserved-names PRELOAD opcache_compile_file preload.php COMPOSER https://github.com/Soullivaneuh/composer-versions-check https://github.com/ThaDafinser/PackageInfo/issues https://github.com/jakoch/awesome-composer http://naderman.de/slippy/slides/2018-06-01-Composer-Best-Practices-2018.pdf LIBRARIES/PACKAGES https://github.com/sebastianbergmann/object-graph requires the GraphViz dot binary to be on the $PATH https://github.com/byjg/jwt-session usa firebase-jwt que con algorightm none https://github.com/rlerdorf/opcache-status https://github.com/carlosbuenosvinos/opcache-dashboard PHP https://github.com/sebastianbergmann/foal Tool to find lines eliminated by OpCache's bytecode optimizer https://github.com/byjg/jwt-session SECURITY https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/XSS%20injection https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/SQL%20injection https://portswigger.net/blog/practical-web-cache-poisoning https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Web%20cache%20deception https://github.com/toolswatch/blackhat-arsenal-tools https://www.exploit-db.com/docs/english/41273-mysql-out-of-band-hacking.pdf BLOG https://danielmiessler.com/blog/ SEO https://danielmiessler.com/blog/the-effect-of-googles-late-2018-algorithm-changes-on-multi-discipline-sites/ https://www.searchenginejournal.com/improve-google-eat-score/270711/ dns https://danielmiessler.com/blog/dns-servers-you-should-have-memorized/ google 8.8.8.8 8.8.4.4 cloudfare 1.1.1.1 1.0.0.1 Filtering CISCO UMBRELLA 208.67.222.222 208.67.220.220 Block malicious and fraudulent sites Norton ConnectSafe DNS 199.85.126.10 199.85.127.10 QUAD9 from IBM 9.9.9.9 IPV6 https://en.wikipedia.org/wiki/Localhost ::1/128 127.0.0.1/8 in IPv4 $re = '/^::1|127.0.0.1|localhost|^loop/mi'; ^::1|^::$|^127\.0\.0\.[01]$|^0\.0\.0\.0|localhost|^loop https://en.wikipedia.org/wiki/Private_network https://en.wikipedia.org/wiki/Reserved_IP_addresses http://www.ronnutter.com/ipv6-cheatsheet-on-identifying-valid-ipv6-addresses/ // 172.16.0.0 – 172.31.255.255 ^fe8|^fc|^169\.254|^10.|^172\.16\.|^192\.168 fd00::/8 http://php.net/manual/en/filter.filters.validate.php if ( ! filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_NO_PRIV_RANGE | FILTER_FLAG_NO_RES_RANGE) ) { // is a local ip address } INPUT_SERVER; INPUT_ENV; $_SERVER superglobal; fe80::/10 — fe80::/10 is reserved for IP address autoconfiguration Addresses in the link-local prefix are only valid and unique on a single link (comparable to the auto-configuration addresses 169.254.0.0/16 of IPv4 fc00::/7 — Unique local addresses (ULAs) are intended for local communication[31] (comparable to IPv4 private addresses 10.0.0.0/8, 172.16.0.0/12 and 192.168.0.0/16 STATS Surprised by the Hot Hand Fallacy? A Truth in the Law of Small Numbers https://doi.org/10.3982/ECTA14943 p. 2019-2047 Joshua B. Miller, Adam Sanjurjo We prove that a subtle but substantial bias exists in a common measure of the conditional dependence of present outcomes on streaks of past outcomes in sequential data. The magnitude of this streak selection bias generally decreases as the sequence gets longer, but increases in streak length, and remains substantial for a range of sequence lengths often used in empirical work. We observe that the canonical study in the influential hot hand fallacy literature, along with replications, are vulnerable to the bias. Upon correcting for the bias, we find that the longstanding conclusions of the canonical study are reversed. https://jasoncollins.blog/2018/06/28/explaining-the-hot-hand-fallacy-fallacy/ behavioural economics blog