Core things to do
-
Start IDs At a Gigantic Number
-
https://secure.phabricator.com/book/phabflavor/article/things_you_should_do_now/
-
Only Store Valid UTF-8 (See above)
-
Never Design a Blacklist-Based Security System (See above)
-
Fail Very Loudly when SQL Syntax Errors Occur in Production (See above)
-
Store all timestamps as UTC
Store user intent, denormalize
- For scheduled events, store intent (e.g. 6pm and location)
- Derive UTC and timezone