
The Backend Engineering Show with Hussein Nasser
Welcome to the Backend Engineering Show podcast with your host Hussein Nasser. If you like software engineering you’ve come to the right place. I discuss all sorts of software engineering technologies and news with specific focus on the backend. All opinions are my own.
Most of my content in the podcast is an audio version of videos I post on my youtube channel here http://www.youtube.com/c/HusseinNasser-software-engineering
Buy me a coffee
https://www.buymeacoffee.com/hnasr
🧑🏫 Courses I Teach
https://husseinnasser.com/courses
Latest episodes

Aug 19, 2020 • 15min
A Critical Jenkins Bug Discovered - This is why Building a Web Server is Hard
Jenkins has just released a statement that there is a potential bug (CVE-2019-17638) where an attacker can steal content from other legitimate requests. In this video, I describe the bug and why being a web server is difficult. 2;00 HTTP Smuggling https://www.youtube.com/watch?v=PFllH0QccCs 7;50 multi-Threading https://www.youtube.com/watch?v=0vFgKr5bjWI&t=1s Resources https://nvd.nist.gov/vuln/detail/CVE-2019-17638 https://en.wikipedia.org/wiki/Jetty_(web_server) https://www.jenkins.io/security/advisory/2020-08-17/

Aug 18, 2020 • 16min
My Struggle with the English Language in the US as an Arab Native Speaker and a Software Engineer
Some of you asked me to talk about how I learned to speak good English on my YouTube videos. I wanted to make a video on the fact that It wasn't always that easy and I struggled a lot and still struggling with English. I have immigrated to the United State in 2015 In this video, I want to explain my struggle with the English language as an Arabic native speaker and how I got better but still, I need lots of work. Speaking Tech English is definitely easier than Social.

Aug 17, 2020 • 16min
What are Third Party Cookies, How do they work?
In this video I explain in details what are third party cookies and how do they work and explain the same site property that google changed 0;30 SameSite 6;00 CORS 6;22 Content Security Policy https://www.youtube.com/watch?v=nHOuakyHX1E https://blog.chromium.org/2020/01/building-more-private-web-path-towards.html

Aug 16, 2020 • 9min
When Designing a Backend System Minimize the “What If” Questions
What if questions sometimes cripple the system design for backend application and complicate the end product. I discuss this in this video. Stay Awesome Hussein Nasser

Aug 16, 2020 • 12min
I ask this question to every Backend Engineer I interview
Light video today discussing my interviewing skills for software engineering positions. I always ask this open ended question and allow the candidate to go free.

Aug 16, 2020 • 15min
Is YAGNI (You aren’t gonna need it) Still Relevant in Backend Engineering System Design?
YAGNI stands for You aren’t gonna need it and its a pillar in extreme programming, in this video I discuss this philosophy within the context of Backend Engineering. https://en.wikipedia.org/wiki/You_aren%27t_gonna_need_it * Extreme Programming Rob Jefferies * You Aren’t Gonna Need it .. true but only if the design is well defined * But I am going to need it * Waterfall vs Agile

Aug 9, 2020 • 14min
WOW! China Blocks TLS 1.3 with ESNI - Let us discuss
SNI or server name indication is a TLS Extention that indicate which server/host/domain the client want to communicate with. This is to allow for hosting of multiple websites on the same public static ip address. For the longest time all ISPs used SNI to block hosts and websites, China is now blocking the encrypted version SNI.
0:00 Intro
2:00 DNS and DOH
3:30 SNI
6:30 ESNI
11:00 The Block
The ESNI and DOH stops this but China want
https://www.zdnet.com/article/china-is-now-blocking-all-encrypted-https-traffic-using-tls-1-3-and-esni/
https://tools.ietf.org/html/draft-ietf-tls-esni-07#section-3.2

Aug 7, 2020 • 10min
Let us discuss HSBC moving from 65 relational databases into one global MongoDB database
HSBC moving from 65 relational databases to a single Global MongoDB, that might be true but it's misleading as not all systems are moved.
Resources
https://diginomica.com/hsbc-moves-65-relational-databases-one-global-mongodb-database
Why some devs don't use MongoDB
https://news.ycombinator.com/item?id=23507197
https://news.ycombinator.com/item?id=19497817
https://news.ycombinator.com/item?id=18366385
https://news.ycombinator.com/item?id=23270429

Aug 6, 2020 • 7min
FireFox Changes to SameSite Cookie Default Behavior Following Chrome’s footsteps - Great Change
SameSite Cookie attribute has been introduced to secure the web and only send cookies within a trusted and safe context. SameSite Cookies Video https://www.youtube.com/watch?v=aUF2QCEudPo

Aug 6, 2020 • 9min
Chrome Blocks Downloads For Files Hosted on HTTP (insecure) URLs - GREAT CHANGE!
A great change by Chrome team, downloading files on HTTP insecure channels is insecure. Let us discuss Resource https://www.zdnet.com/article/google-to-block-some-http-file-downloads-starting-with-chrome-83/