News in the Category:
Security 
Total posts: 647
Shaun Walker, June 30, 2008
I've blogged beforeabout how to make timeouts work correctly for persistent cookies, but thought I should also flag up a minor, but often requested,enhancement that will be in DotNetNuke 5.0. Whilst p...
More Whidbey stuff, June 25, 2008
I've blogged in the past about injection attacks. Microsoft publishes additional new tools to detect and protect against injection attacks. The first tool, developed by HP, crawls web sites to automat...
Misfit Geek, June 25, 2008
While at TechEd 2008 I got to spend some time in the "Fish Bowl" with Georgeo
Pulikkathara.
Georgeo interviewed me on Microsoft's Secure Development Lifecycle (SDL) and my upcoming
Developer Secur...
InfoWorld: Web services, June 24, 2008
The Ruby programming language, which has become popular as the basis for Web 2.0 sites such as Twitter, contains serious security flaws that could allow attackers to take over an organization's We...
The Code Project Latest Articles, June 21, 2008
Using Custom Base Class for security , modularity and session management...
Microsoft Certified Professional Magazine Online | News, June 16, 2008
Microsoft works to correct issue that kept some administrators using System Center Configuration Manager 2007 from downloading the latest security updates....
Colt Kwongs Blog, June 16, 2008
A very misleading error message that I came across last week.. Trial period of my MOSS has expired? No way.. check out the permission and security settings first....
Microsoft Certified Professional Magazine Online | News, June 13, 2008
Verizon Business reports that more than half of the data breaches on enterprise systems go undetected and are caused by general negligence and lax security....
DotNetNuke Developer - DotNetNuke Core Team Member and Excellent Programmer, June 11, 2008
To go along with my earlier post about DNN today, 4.8.4 has been released due to some minor security issues that were found after the 4.8.3 release shipped. You can get information about the security ...
Colt Kwongs Blog, June 9, 2008
I just try SmartPart and enable AJAX functionality in SharePoint tonight, here are few notes:1. Download and install SmartPart (make sure SmartPart is deployed and affect all WSS sites as shown in the...
IKVM.NET Weblog, June 2, 2008
This is the last part of a three part backward running series on the design, implementation and performance
results of the CallerID feature.
How To Pass Information From Caller To Call...
Joe Brinkman, May 31, 2008
As per the old proverb , we're seeing a lot of activity around security these days....
Softwaremaker, May 31, 2008
I was recently pointed to this post that
highlights a "successful attempt" by some students
in Germany to crack Microsoft
Cardspace.After reading through the post several times, I became ...
Joe Brinkman, May 30, 2008
It has been a bit since I posted a Wiki status update so here goes a quick one for this Friday evening. There is one last issue to be tracked down in the WIki before we can recompile/package and submi...
Joe Brinkman, May 29, 2008
This points to post following up on an article I wrote arguing the suitability of DNN for building groupware applications. The post reflects on the recent security scare that had a number of us locked...
Shaun Walker, May 28, 2008
I mentioned in my last blog that I would post an update once we were successfully able to work through the security issues reported last week. The most important update is Version 4.8.3 was released t...
Clarity Blogs: ASP.NET, May 28, 2008
I ran into an interesting 'gotcha' when working with an SSRS site that has a custom security extension implemented (instead of using the built in Windows authentication model, see the MSDN sec...
DotNetNuke Developer - DotNetNuke Core Team Member and Excellent Programmer, May 27, 2008
Last week there was a security scare within the DNN world. I won't get into many of the details, but it was actually blown way out of proportion by what used to be a prominent vendor in the DNN commun...
Sahil Malik - blah.winsmarts.com, May 27, 2008
Okay so, first, what is the SPSecurityTrimmedControl? SPSecurityTrimmedControl is a web control in the SharePoint framework that lets you show or hide certain parts of the ...
Karl Seguin [MVP], May 22, 2008
It's common practice to use hashes for signing purposes. For example, you can take a hash (MD5, SHA1, it doesn't really matter) of a file's byte contents and use that hash to ensure the fi...
Joe Brinkman, May 22, 2008
Over the past couple of weeks, the DotNetNuke project has had to deal with a few different security issues. As Shaun pointed out in his post, we take these issues very seriously and make every ...
Shaun Walker, May 21, 2008
Since the DotNetNuke application was originally released, we have been committed to providing a highly secure web platform to the Microsoft community. Security on the web is a challenging area and we ...
Journey to SQL Authority with Pinal Dave, May 19, 2008
Providing Security for Web Applications and Infrastructure: Best Practices for Managing Security RisksThe Windows Live Security team shares best practices - from platform and network security to incid...
Federal Developer Weblog, May 19, 2008
Register today for our upcoming webcasts!
DATE
TIME
LOCATION
TITLE AND REGISTRATION LINK
PRESENTERS
OWNER
TARGET AUDIENCE
June 20, 2008
14:00 -15:30 EST
Webcast
Overview of Office Open...
Microsoft Certified Professional Magazine Online | News, May 16, 2008
Security software vendor PC Tools last Friday fired the latest salvo in the argument over whether Windows Vista is as secure as Microsoft says it is....
Pablo M. Cibraro (aka Cibrax), May 16, 2008
As you may know, testing WCF services is not as simple as referencing a service implementation and start writing unit tests against it. If the service we want to test has a high dependency with the op...
InfoWorld: Web services, May 15, 2008
A server problem at the U.S. National Security Agency has knocked the secretive intelligence agency off the Internet....
FTPOnline ASP.NET Channel, May 13, 2008
Organizations still aren't doing enough to protect their data from Web application vulnerabilities, according to a study released Tuesday by security firm Cenzic....
Microsoft Certified Professional Magazine Online | News, May 12, 2008
IT pros are having a hard time balancing security, software patch management and IT auditing with a host of other duties, says a Shavlik Technologies survey....
The Code Project Latest Articles, May 8, 2008
Clear text query strings are a potential security threat for your web application. Thus, query strings should be always encrypted....
DotNetJohn.Com, May 6, 2008
This article discusses the concept of Code Access Security, its functions and the permissions related concepts....
Misfit Geek, April 30, 2008
... or so says eWeek. [ HERE ]
Scott is in fine company with 10 of the 100 most important (according to eWeek) being Microsofties.
3. Steve Ballmer
CEO, Microsoft
6. Jean-Philippe Courto...
Microsoft Certified Professional Magazine Online | Todays Top Picks, April 30, 2008
A sample of one week's newly discovered vulnerabilities can keep hackers busy and security experts on their toes....
Misfit Geek, April 30, 2008
... or so says eWeek. [ HERE ]
Scott is in fine company with 10 of the 100 most important (according to eWeek) being Microsofties.
3. Steve Ballmer
CEO, Microsoft
6. Jean-Philippe Courto...
The Code Project Latest Articles, April 30, 2008
In order to improve the security of ASP.NET web applications, query strings should be always encrypted....
Simple Talk, April 29, 2008
Tony Davis, on the security loopholes that arise from poor database security....
ASP.NET Announcements, April 28, 2008
Hi all,We're starting up the OWASP (Open Web Application Security Project) .NET Project Reorganization and I'm looking for your feedback. OWASP is a worldwide free and open communi...
Misfit Geek, April 27, 2008
Thanks to everyone who attended my AJAX Sessions at the Microsoft Health & Life Sciences Developer's Conference in Atlantic City last week. Here are links to the PowerPoints and Demos ASP.NET A...
Misfit Geek, April 26, 2008
Thanks to everyone who attended my AJAX Sessions at the Microsoft Health & Life Sciences Developer's Conference in Atlantic City last week. Here are links to the PowerPoints and Demos ASP.NET A...
Guy Barrettes WebLog, April 24, 2008
I was trying to explain quickly what Code Access Security is to someone when I found this blog entry from Emmet Gray:http://home.hot.rr.com/graye/Articles/CodeAccessSecurity.htm
In a nutshell, he expl...
Pablo M. Cibraro (aka Cibrax), April 21, 2008
One of the discussions that we had during the last summit with the rest of "Connected Systems" MVPs was the possibility of supporting a Federation Scenario over TCP in WCF. For many of us that scena...
Microsoft Certified Professional Magazine Online | News, April 18, 2008
Security personnel in Redmond are investigating a newly reported zero-day bug vulnerability in Microsoft operating systems and server systems....
Microsoft Certified Professional Magazine Online | Todays Top Picks, April 14, 2008
How much security you need in Vista and Windows Server 2008 depends on where you're connecting. Choose carefully....
Microsoft Certified Professional Magazine Online | Columns, April 14, 2008
How much security you need in Vista and Windows Server 2008 depends on where you're connecting. Choose carefully....
Software/Technology Discussion, April 14, 2008
This is one of those blog posts that I cannot take credit, but want to keep the information handy for a later time. The SPSecurityTrimmedControl shipped with WSSv3 is a very powerful control. It basi...
kbAlertz.com :: Visual Studio 2005, April 12, 2008
951595 ... Security Exceptions during debug of .NET applicationThis RSS feed provided by kbAlerz.com.Visit kbAlertz.com to
subscribe. It's 100% free and you'll be able to recieve e-mail or RSS upda...
Rob Howards Blog, April 12, 2008
The OpenID open source project for ASP.NET (DotNetOpenID) now supports the OpenID 2.0 specification and is available for download on Google Code: http://dotnetopenid.googlecode.com/ For businesses or ...
Microsoft Certified Professional Magazine Online | News, April 8, 2008
If the traditional notion of infrastructure-based perimeter security is not yet dead, it's not for lack of effort by keynote speakers at this week's RSA Security conference....
Microsoft Certified Professional Magazine Online | News, April 8, 2008
Microsoft's released a public beta version of an integrated security solution, code-named "Stirling."...
InfoWorld: Web services, April 3, 2008
Providers of applications security testing tools say business is taking off, as more customers are building such capabilities into their development lifecycles and large platform providers have picked...