|
|
|
|
|
|
|
July 2005 - Security Briefs
-
I just happened across this in a Google search looking for information on supplying custom assembly evidence for .NET code access security. It's a rock band whose members apparently really liked CAS ;-)
-
Mike Howard and David LeBlanc, authors of Writing Secure Code (the best security book for Windows coders) have teamed up with John Viega, coauthor of Building Secure Software (the best security book for Unix coders), to put together 19 Deadly Sins of...
-
I've gotten a few reports from people that CPWLW is failing when run as SYSTEM. I confirmed this myself on Friday when I was hacking up some code for a client. Today I looked and found this in the docs: Windows XP SP2 and Windows Server 2003: You cannot...
-
We've got another campsight event coming up the week of Aug 22-26 in Redmond Washington. Come see Aaron Skonnard, Fritz Onion, and myself chat about the practicalities of building distributed systems on the Microsoft platform. Our goal is to help you...
-
Kent responded to my rant about SQL Server by pointing out how important SSL support is. Let me clarfiy - my post was not in any way meant to belittle SQL Server's SSL support. I also think that it's very important, for all the scenarios that Kent mentions...
-
If you got a chance to play around with the Kerb support in System.Runtime.Remoting in Beta 1, you might want to note that there have been some changes to the config files in beta 2 . Looks like the same basic options are there, only they've been renamed...
-
If anyone was wondering why I got on the SQL Server channel security rant , I'm currently working on a talk that shows how to use integrated authentication across several Microsoft products, and when you look at how integrated authentication is used across...
-
I've recently been looking into ways of securing the channel between a client and SQL Server. Given that SQL Server supports integrated authentication (integrated security=sspi) you'd think that the native TCP/IP library would be able to use SSPI to sign...
-
I've been using differencing disks to test some deployment scripts: I have a base image that has the operating system and basic infrastructure (like BizTalk) on it, and I create a differencing disk off of that to test my deployment. Then I just delete...
|
|
|
|
|
|