PHP – a look back, a look forward

The history of PHP is the history of the web. Long-time developers will remember how PHP changed the universe of web development. PHP brought two key innovations to the table when it first launched. First, it was interpreted, which meant you could edit a file in place, then refresh the page and see the result. This quick feedback loop was why so many started with PHP and is still a cornerstone of what makes the language so useful. Second, it was the first widespread templating language which enabled intermixing of HTML and PHP code. Every other major web language and framework since PHP has followed suit.

Over time, PHP became a cornerstone of the “LAMP stack”. The LAMP stack consisted of...

Read more →

Beyond Heartbleed: Improved Security for Encrypted Connections

The announcement earlier this month of the “Heartbleed” bug (CVE-2014-0160) in OpenSSL once again focused attention on the technology used to secure communications on the Internet. Heartbleed was a very serious vulnerability and we moved as quickly as possible to patch systems and eliminate this threat on behalf of our customers.

But security is not just about fire drills, there are many steps that can be taken over time to continually improve security. Over the last months we have rolled out several security improvements to Heroku SSL Endpoints, including:

These enhancements have already been rolled out and are in effect for...

Read more →

Heroku Security Bug Bounty

Working with security researchers to ensure the trustworthiness of Heroku’s platform is an ongoing effort of ours. As part of this effort, the Heroku security team, in conjunction with Bugcrowd, is pleased to announce our new security bug bounty program. For each security bug you help find, which helps to ensure our platform is safe and secure, we'll reward you. Our initial rewards will be between $100 and $1500, varying based on the severity of the vulnerability.

Detailed rules and information about the scope of this bounty program are available on our page at Bugcrowd. As was previously the case, customer applications are strictly out of scope for the bounty – but we’ll pass...

Read more →

Congratulations to Plated, Zoobean, and Breathometer on Shark Tank

We love seeing our customers’ successful and gaining recognition for the amazing businesses they are building. So, as you could imagine, we were thrilled to learn that a Heroku customer was featured on ABCs Shark Tank last Friday, with two more being featured over the next couple weeks.

Plated - Aired 4/4 at 9pm ET on ABC

plated_logo Plated, a New York City-based food/tech company, aims to make it simple and fun for people to create healthy, homemade dinners by delivering fresh ingredients and chef-designed easy-to-follow recipes directly to your door. With delivery now available to 80% of the USA, Plated is likely available to you.

After Plated’s launch in November 2012, the company was featured...

Read more →

PyCon Montreal - April 9 - 17, 2014

We are really honored to be a part of PyCon again this year. We have a big booth in the expo hall and a bunch of people who are really looking forward to attending and who are there to answer questions, hack on code, troubleshoot, or shoot the ….

Enter to win:

While you are in our booth, you can enter to win $500 (in cash or credits) toward the open source-related project, user group, meetup, or organization of your choice. Ask at the booth for details.

Here’s who is going to be there this weekend:

Craig Kerstiens (@craigkerstiens)

Dave Gouldin @dgouldin)

Dominic Dagradi @dddagradi)

Francis Lacoste (@fjlacoste)

Greg Stark (@zkzkz)

Jacob Kaplan-Moss (@jacobian)

Jamu Kakar (@jkarak)

...

Read more →

Browse the blog archives, subscribe to the full-text feed, or visit the engineering blog.