Welcome to Bugs that Bite
Introducing a new blog from Teri Radichel
Have you ever gotten stuck for way too long on an error message that should have been a simple fix? Do you fix and error and forget what you did to fix it the next time you hit the error? Do you ever spend weeks trying to convince a company that there is a bug in their product? Do you find that some error messages do not correctly describe the problem? Are some UI’s confusing? Is performance problematic with some functionality of certain applications? That’s what this blog is all about.
I rarely pay for support on cloud platforms because, basically, I feel like I’m paying to provide quality assurance. When the documentation is clear and the error messages are even mildly useful I’ll typically figure out the problem faster myself than through customer support. When I do find a problem I can’t fix, it’s often a bug or the service is down. Do I have to pay to report bugs and tell a company their service is down? That doesn’t seem fair.
I will sometimes go around in circles for ages with support teams such as I did trying to resolve some problems with Microsoft Azure recently. I decided to just start writing this blog with the error messages I hit and how to fix them. Maybe this will get to the right people to fix the problems faster than going through a support team that doesn’t always have the time or training to adequately troubleshoot a problem.
Hopefully it helps both people who are hitting the error messages, and the people that are trying to fix them and make their products better. And that usually doesn’t happen by submitting support tickets, unfortunately, or at least not very fast. I recently spent 4 weeks trying to convince an Azure support engineer to escalate a problem that turned out to be an Azure bug, which they said they fixed, but by the time they fixed it, my 6 week Azure class was over and I had to move on so I didn’t test it.
The problem is that I’m not getting paid to report and verify fixes for all these bugs. At least when companies pay a security bug bounty you have a shot at getting paid. I’d rather spend my time on that but I’ve been too busy with cloud and application pentesting to date to have time for bug bounties. I hope to find time someday. I’m working on some automation that might help. :)
Although I write a lot about cybersecurity, security assessments, and penetration testing this blog isn’t all about security. It’s just about error messages I hit and how to fix them. Related that that is poor performance and confusing UI design.
If you want to learn how to secure your systems and code, follow my other blog, Cloud Security:
If you want to write better error messages and improve error handling check out my post on Thoughtful Error Handling:
Thoughtful Error Handling
Your error handler is one of your most important security defenses
For more information about security bugs, otherwise know as CVEs, and a subcategory called Zero Days check out CVEs: Security Bugs that Bite:
CVEs: Security Bugs that Bite
What is a CVE and why is it important? Cybersecurity for Executives.
That’s part of my book linked at the bottom of this blog post which covers cybersecurity fundamentals at an executive level.
If you want to improve testing your code and preventing error messages in general you can read this post on Better testing for better outcomes:
Better testing for better outcomes
Infrastructure, disaster recovery, product, and penetration testing
For more on penetration testing or security testing, check out this post on Getting value from security testing:
Getting value from security testing
What did you do with that penetration test, audit, assessment, or bug bounty report?
If an article in this blog helped you or you had the same problem, please clap!
That’s it for now!
If you liked this story please clap and follow:
Medium: Teri Radichel or Email List: Teri Radichel
Twitter: @teriradichel or @2ndSightLab
Requests services via LinkedIn: Teri Radichel or IANS Research
© 2nd Sight Lab 2022
Want to learn more about Cybersecurity and Cloud Security? Check out: Cybersecurity for Executives in the Age of Cloud on Amazon
Need Cloud Security Training? 2nd Sight Lab Cloud Security Training
Cybersecurity & Cloud Security Resources by Teri Radichel: Cybersecurity and Cloud security classes, articles, white papers, presentations, and podcasts