|
|
|
|
|
|
|
February 2005 - Security Briefs
-
No more Internet product reactivation for Windows? It's just bits, and when all you're selling are bits, it's very difficult to make people who don't want to pay cough up the dough. The recording industry has the same problem. Ultimately this problem...
-
...is hard. I'm curious how many of you are doing it, and what challenges you've come across. The reason I ask is that I'm currently working on an article for the Smart Client developer center on the topic of writing managed applications that run with...
-
How many of you were incensed when the supermarket cards came to town? I know I was. My premise has always been that the supermarkets raised their prices, then offered “discounts” to people who submitted to having their purchases tracked....
-
A lot of folks in the past have made the assumption that assemblies in the GAC are somehow special with respsect to security. In version 1.1 of the .NET Framework (and even up through beta 1 of Whidbey) this was in fact the case. The only reason GAC'd...
-
Thanks Craig for the heads up. Schneier points to a paper that demonstrates an attack against SHA-1 that “pretty much puts a bullet in it”. If this pans out, a lot of people are going to be scrambling. We've been told by the experts for a...
-
Jim Wilson has joined Pluralsight to help develop our smart client curriculum. Jim's been immersed in the compact framework for several years, and has a lot of great insight about building apps that can deal with “just-enough connectivity“...
-
There's a lot of confusion around this attribute, which is why I'd like to point out that Shawn Farkas has written a really helpful and accurate piece on the mechanics and concept behind this attribute. He's also pointed out that in Whidbey, the error...
-
This photo just says it all, doesn't it? (from Schneier )
-
I've started a new wiki page called AdminToProgrammer where I'm soliciting feedback from system administrators. Given that a big part of my job is to teach programmers how to build secure software, I recently asked for help from a community of sysadmins...
-
We've just gone live with a whole slew of new courses here at Pluralsight, from ASP.NET to Indigo. And as you'd expect, there's a security course in there as well. Contact Bill if you'd like us to deliver one of these at your company. Also don't forget...
-
Looks like Microsoft is sponsoring some security webcasts. I like the name of this one: The Software Security Crisis: Selling Management on the Need to Invest in Secure Software Development . Here are some links where you can learn more: http://www.microsoft...
-
Back in November I worked with Hervey and Matt on a piece dedicated to the care and feeding of Username Tokens. If you're using the Username Token, you should read this article , which just went live at the MSDN Web Services Dev Center . The Username...
|
|
|
|
|
|