Archives

Archives from 2005

Security talk at VSLive! in San Francisco

12/29/2005

.NET ArchitecturePatterns ASP.NET Personal Security Speaking

It has been a busy month and a half since I last blogged -- too busy. But, it has been fun as I have done a few security code audits, lots of... Read more

My HDC Podcast on Security is Live

11/18/2005

.NET ArchitecturePatterns Database Development Personal Security Speaking

11/15/2005

.NET ArchitecturePatterns Personal Security Speaking

11/11/2005

.NET ArchitecturePatterns Database Development Personal Security Speaking

11/10/2005

.NET Database Development Personal Security Speaking

I will be speaking tonight to the New England SQL Server User Group at Microsoft in Waltham, MA. My friend Andrew Novick will give a talk on SQL... Read more

MAD Security Code Camp photos

11/10/2005

.NET Personal Security Speaking

The MAD Security Code Camp site has been updated with photos from the event. This one is priceless. Read more

Boston VS2005 and SQL2005 Cabana Night recap

11/8/2005

.NET ArchitecturePatterns ASP.NET Database Development Personal Security Speaking Web Services

11/7/2005

Database Development Personal Security

I was questioned briefly last week forthis article in Computerworld:Robert Hurlbut, an independent software consultant in Worcester, Mass., said SQL... Read more

Boston VS2005 and SQL2005 Cabana Night: Ask the Experts (tonight)

11/7/2005

.NET .NET Remoting ADO.NET ArchitecturePatterns ASP.NET CLR Database Development Personal Security Smart Clients Speaking System.Transactions Web Services

11/3/2005

.NET ArchitecturePatterns ASP.NET Books Personal Security Speaking Web Services

10/31/2005

.NET Personal Security Speaking

10/26/2005

.NET ArchitecturePatterns ASP.NET Personal Security Speaking

I will be speaking on Threat Modeling for Web Applications at the local OWASP Boston chapter meeting on November 2, at the Microsoft, Waltham, MA... Read more

Mini SQL Server Code Camp

10/26/2005

.NET Database Development Personal

My friends Adam Machanic and Andrew Novick led a Mini SQL Server Code Camp last Saturday in Waltham, MA. I was originally planned to attend, but... Read more

MAD Security Code Camp Schedule

10/25/2005

.NET Personal Security Speaking

10/16/2005

.NET ArchitecturePatterns ASP.NET Database Development Personal Security Speaking

10/14/2005

.NET .NET Remoting ArchitecturePatterns ASP.NET Personal Security Speaking

I had a great time in Orlando at VSLive!. The hotel we stayed at (Walt Disney World Dolphin Hotel)is amazing! This hotel is HUGE ... several of us... Read more

At HDC 2005

10/14/2005

.NET ASP.NET Database Development Personal Security Speaking

10/9/2005

.NET ArchitecturePatterns Books Extreme Programming Personal Security Speaking

10/9/2005

.NET CLR Personal Security

I was excited to see Shawn Farkas' article available on "Discover Techniques for Safely Hosting Untrusted Add-Ins with the .NET Framework 2.0", which... Read more

Speaking at MAD Security Code Camp on Oct. 29

10/8/2005

.NET Personal Security Speaking

I will be speaking at the Mid-Atlantic (MAD) Security Code Camp at the Microsoft offices in Reston, VA on October 29. I am really looking forward to... Read more

Looking for new opportunities

10/4/2005

.NET .NET Remoting ADO.NET ArchitecturePatterns ASP.NET COMPlus EnterpriseServices Database Development Extreme Programming Personal Security Service Orientation (SO) Smart Clients Speaking Web Services

10/3/2005

.NET Speaking System.Transactions

10/3/2005

.NET CLR Personal Rotor Security

9/30/2005

.NET ArchitecturePatterns Personal Security

Brian Johnson has written a new article on MSDN describing the new security features of Visual Studio 2005. Take a look -- I have been playing with... Read more

Code Camp 4 Recap

9/26/2005

.NET ArchitecturePatterns ASP.NET COMPlus EnterpriseServices Personal Security System.Transactions

I am catching up after another very successful New England Code Camp weekend. I am getting ready to head out to the MVP Global Summit 2005in Seattle,... Read more

System.Transactions resources

9/23/2005

.NET ArchitecturePatterns COMPlus EnterpriseServices Database Development Personal Speaking System.Transactions

9/18/2005

.NET COMPlus EnterpriseServices Database Development Personal Security Speaking

I have been working on severalpresentations on security,SQL Server, and transactions topicsfor upcoming conferences and user group talks. These always... Read more

Distributed Transactions at PDC

9/18/2005

.NET ArchitecturePatterns COMPlus EnterpriseServices Personal

Kirk Allen Evans talks about his adventures in discussing with several at PDC one of my past favorite topics: distributed transactions. I have renewed... Read more

Fiber mode gone for SQLCLR

9/17/2005

.NET ArchitecturePatterns CLR Database Development

I noticed Dino Viehland posted a notice regarding fiber mode support in SQLCLR for SQL Server 2005: Fiber mode is gone...I remember following Dino's... Read more

Rootkits book

9/15/2005

.NET Books Personal Security

A couple of weeks ago while flying to and from Microsoft in Redmond, I read most of this book (still finishing it between bits of spare time on my... Read more

Follow-up on Devscovery

9/4/2005

.NET Extreme Programming Personal Security

8/31/2005

.NET Personal

8/28/2005

.NET Personal Security

Nigel Watling (great start of a blog, by the way -- subscribed! RSS) has a very nice summary of some material on developing as a non-administrator and... Read more

What's new for Security in .NET 2.0

8/26/2005

.NET Personal Security Speaking

Shawn Farkas has posted an excellent summary of the newest features and changes for Security in .NET 2.0 on his blog. He also links to Keith Brown and... Read more

Performance and considerations of distributed .NET options

8/16/2005

.NET .NET Remoting ArchitecturePatterns ASP.NET COMPlus EnterpriseServices Database Development Service Orientation (SO) WCFIndigo Web Services

8/16/2005

ASP.NET Security

8/13/2005

.NET Personal Security

I am putting this here as a nice placeholder (for myself and others):The patterns and practices folks have just updated their list of Security-related... Read more

NE VB User Group talk

8/11/2005

.NET Personal Speaking

8/11/2005

.NET Security

8/11/2005

.NET Books Personal Security

8/3/2005

.NET Database Development

Thom Robbins mentions a Mini Code Camp for SQL Server Programming: From 2000 to 2005. This will be on October 22 (Saturday), from 8:30 AM - 5:00... Read more

Devscovery in Redmond, WA

8/3/2005

.NET ArchitecturePatterns Personal

7/23/2005

.NET Security

Rick Samona has a webcast on MSDN TV discussing how developers can write secure code using the new enhancements in Visual Studio 2005. Take about... Read more

Indigo study group

7/21/2005

.NET ArchitecturePatterns Boston .NET Architecture Study Group Personal Service Orientation (SO) WCFIndigo Web Services

7/21/2005

.NET .NET Remoting ArchitecturePatterns ASP.NET COMPlus EnterpriseServices Database Development Service Orientation (SO) WCFIndigo Web Services

Richard Turner (Product Manager in Microsoft's Web Services Strategy team), has published the first of a series of papers that provides guidance on... Read more

Unit Testing article

7/20/2005

.NET Extreme Programming Personal

7/20/2005

.NET Personal Security Speaking

I will be speaking at the Heartland Developers Conference 2005 in Cedar Rapids, Iowa on October 12-14, 2005. My topic will be Security Changes in .NET... Read more

Enterprise Services to get Transaction Promotion and Delegation

7/20/2005

.NET ArchitecturePatterns COMPlus EnterpriseServices Database Development

Paul Fallonposts some good news (and excellent description) aboutEnterprise Services in .NET 2.0. Systems.Transactions already features Transaction... Read more

Speaking at New England VB Pro group, Aug 4

7/19/2005

.NET ArchitecturePatterns Personal Speaking

For a slightly different change of pace for me, I will be speaking at the New England Visual Basic Professionals User Group meetingat the Microsoft... Read more

Concurrency article

7/15/2005

.NET ArchitecturePatterns CLR Personal

Concurrency is a topic I have been interested in over the last year, but especially over the last six months with one of my consultingprojects... Read more

Book: The 19 Deadly Sins of Software Security

7/12/2005

.NET Books Personal Security

7/10/2005

.NET Books Personal Service Orientation (SO) WCFIndigo Web Services

As Don and Julie mention, the first Indigo programming book, Programming Indigo : Code Name for the Unified Framework for Building Service-Oriented... Read more

Another year

7/10/2005

Personal

(purely personal)From the math side of me:Today, my age = ((4! * 3)/ 2) + 1Or, put another way,my age is a prime number, as well as this... Read more

Web Services Security talk

7/8/2005

.NET Personal Security Service Orientation (SO) Web Services

It's been a busy week, but I had a chance to attenda talk this week. By chance, I happened to catch the local OWASP (Open Web Application Security... Read more

Currently reading

7/8/2005

.NET ArchitecturePatterns Books Extreme Programming Personal

In my daily life as a consultant, I work on solving problems for clients. That usually means one of two things: I develop new solutions from scratch... Read more

Book: Honeypots for Windows

7/8/2005

Books Personal Security

I received this book, Honeypots for Windows by Roger A. Grimes (published by Apress), a couple of months ago to review. I have read a chapter hear and... Read more

Developers and Cryptography

7/5/2005

.NET Security

Larry Ostermanoffers some words of wisdom regarding the differnce between a developer understanding cryptography (as in "which algorithm should I use"... Read more

VSLive! Boston - Secure Plug-In Applications

7/1/2005

.NET Personal Security Speaking

I spent the last couple of days at VSLive! Boston. I gave a talk on Wednesday on "Writing Secure Plug-Ins Applications in .NET". You can pick up the... Read more

Visual Developer - Security MVP

7/1/2005

.NET Personal Security

I was informed that today it is official: I have been moved from the Visual C# MVP group into the newly formed Application Developer Security MVP... Read more

Interesting East Coast free events

7/1/2005

.NET

Looking around, I found a few interesting East Coast freeevents that are soon or in the future:Richard Hale Shaw is speaking on various C# 2.0... Read more

SQL Server fun at Pre-DevTeach

6/23/2005

.NET Personal

Adam captured some of the fun the SQL Server bloggers had before DevTeachhere. Read more

Some Indigo at DevTeach

6/23/2005

.NET ArchitecturePatterns COMPlus EnterpriseServices Personal Service Orientation (SO) Speaking WCFIndigo

6/23/2005

.NET ArchitecturePatterns Database Development Personal Security

One highlight (among many) of my stay in Montreal for DevTeachwas meeting Montreal natives Nicole Calinoiu and her husband Michel Bordeleau for dinner... Read more

DevTeach bound

6/17/2005

.NET Database Development Personal Speaking

This week has been extremely busy with catching up after TechEd, getting the latest SQL Server 2005 June CTP installed on a VPC, playing with the... Read more

TechEd Day 3: Least Privilege

6/13/2005

.NET Personal Security

6/7/2005

.NET ADO.NET ArchitecturePatterns COMPlus EnterpriseServices Database Development Security Service Orientation (SO)

6/6/2005

.NET ArchitecturePatterns Books Database Development Service Orientation (SO)

I arrived Sunday noon. It was a little early for check-in to my hotel (not one of the standard TechEd hotels, unfortunately), so the rooms weren't... Read more

SQL Injection article

6/6/2005

.NET Personal Security

One of my first published articles came out a few days agoin the June, 2005 issue of .NET Developers Journal.This is a security focused issue with... Read more

TechEd bound

6/5/2005

.NET Personal

I have been spending most of the day clearing out some work and getting ready for my trip to TechEd early tomorrow morning (Sunday). If your there, I... Read more

Enterprise Services book published

6/3/2005

.NET ArchitecturePatterns Books COMPlus EnterpriseServices Personal

5/31/2005

.NET ArchitecturePatterns

This is a great announcement for those interested in architecture topics:"Shortly after joining the Architecture Strategy Team, we worked with MSDN to... Read more

Security Samurai

5/19/2005

.NET Personal Security

Eric Marvets, the Security Samurai, who spoke at last weekend's Atlanta Code Camp, now has a security blog. Eric did some work for me (through my... Read more

New England Star Wars

5/19/2005

Personal

(Purely personal)Thom Robbins has done a great thing and brought Star Wars 3 to New England (OK, not really -- it was already going to be here, but... Read more

Threat Modeling for Web Applications

5/18/2005

.NET ArchitecturePatterns ASP.NET Security

This is a nice welcome addition to the threat modeling literature, and especially for web application security. Take a look. Excellent resource!... Read more

Devscovery in Washington, DC

4/29/2005

.NET ArchitecturePatterns Personal

I scheduled some time ago to attend Devscovery next week in Washington, DC, but I have now had to postpone it to the next time which is at theend of... Read more

TechEd: Non-Admin Development BOF

4/27/2005

.NET ArchitecturePatterns Personal Security Speaking

The TechEd BOF (Birds of a Feather) voting is over and mine wasaccepted. Here is the schedule:Developing software as a non-administrator -Wed, June... Read more

Got Indigo? Day at Microsoft, Waltham

4/27/2005

.NET .NET Remoting ArchitecturePatterns COMPlus EnterpriseServices Personal Service Orientation (SO) Web Services

I was planning toattend the "Got Indigo?" Day at Microsoft, Waltham, MA, but have had to put some hours in on finishing my current project. I will be... Read more

Congrats to Andrew for MbUnit lead

4/27/2005

.NET Extreme Programming Personal

4/20/2005

.NET .NET Remoting ArchitecturePatterns Personal Security Service Orientation (SO) Speaking Web Services

I was asked last week and informed Friday that I was selected to be one of the Technical Experts at the Connected Systems Infrastructure (CSI) Track... Read more

Boston Code Brew meeting at The Azgard

4/19/2005

.NET Boston .NET Architecture Study Group

4/13/2005

.NET ArchitecturePatterns Extreme Programming Personal Speaking

4/8/2005

.NET ArchitecturePatterns Extreme Programming Personal Security

4/8/2005

.NET ArchitecturePatterns Service Orientation (SO)

Here is an interesting find (a placemark for me mostly): Indogo SDR dry-runs that are in the form of webcasts. Gene Webb has the links here. [Found by... Read more

Heading up to Vermont this weekend for unit testing and TDD

4/8/2005

.NET Extreme Programming

4/6/2005

.NET ArchitecturePatterns Extreme Programming Personal Security

4/1/2005

.NET ArchitecturePatterns Personal Security

3/31/2005

.NET ArchitecturePatterns Personal Security

As you may know, the long awaited Windows Server 2003 SP1 has finally reached RTM. Here is some technical information, and a Top Ten feature... Read more

Speaking at VSLive! Boston on Secure Plug-In Applications

3/23/2005

.NET ArchitecturePatterns CLR Rotor Security Speaking

I noticed over the last couple of days my "Writing Secure Plug-in Applications in .NET" session is listed for VSLive! Boston. This talk is similar to... Read more

Trustworthy Computing Security Development Lifecycle

3/21/2005

.NET Security

My friend Kevin Hegg mentioned this link to me on Friday, but it wasn't live yet. But, it is now: Michael Howard mentions it's "live" status at... Read more

Partial Trust and ASP.NET on MSDN TV

3/21/2005

.NET ASP.NET Security

There is an MSDN TV overview of writing partially trusted applications with ASP.NET [found by way of Dominick Baier]. Read more

Installed SQL Server 2005?

3/18/2005

.NET Database Development Security

Have you tried installing SQL Server 2005 yet? If so, how did it go for you?There is a survey the SQL Server team would like you to fill out:The Yukon... Read more

Getting started on the Avalon and Indigo CTPs

3/18/2005

.NET ArchitecturePatterns Personal Service Orientation (SO) Web Services

3/16/2005

.NET Personal

3/15/2005

.NET ASP.NET Database Development Personal Security Speaking

3/14/2005

.NET Database Development Security Speaking

3/10/2005

.NET Personal Security Speaking

I submitted one of the first TechEd Birds of a Feather (BoF) sessions on this topic:Developing software as a non-administratorWe have all heard we... Read more

Speaking in Hartford, CT tonight

3/9/2005

.NET Security Speaking

I will be speaking tonight on .NET Security 101 at the Connecticut Access UsersGroup in Farmington, CT (correction: not in Hartford, but near... Read more

Hans Bethe dies

3/8/2005

Personal

I just noticed this today and was sad to learn that Hans Bethedied on Sunday at the age of 98. Bethe was one of the last (probably the last now) great... Read more

SQL Server 2005 3rd CTP available

3/3/2005

.NET ArchitecturePatterns Database Development

I got the same email as Romanregarding the availability of the SQL Server 2005 3rd CTP:Today, Microsoft released the third Community Technical Preview... Read more

Get your .NET project started correctly

3/3/2005

.NET ArchitecturePatterns Extreme Programming Personal

2/23/2005

.NET Personal Security

By now, I am sure you have seen or heardthe news about SHA1 being broken. In a somewhat timely fashion, I had been (re)reading Bruce Schnier and Niels... Read more

Rootkits revealed

2/23/2005

.NET ArchitecturePatterns Security

Daniele Muscetta (of Microsoft) posted a nice summary of some recent articles on Rootkits. He also included information on SysInternals' latest... Read more

Guerrilla Threat Modeling

2/23/2005

.NET ArchitecturePatterns Security

I saw this last night, and Dana Epp has posted a pointer:Peter Torr has done it again. He has written an EXCELLENTarticle on writing a practical... Read more

Boston Code Brew (2nd meeting) tonight

2/23/2005

Boston .NET Architecture Study Group

Our second Boston Code Brew meeting is tonight. Tonight, we are focusing on "all things database" with a special emphasis on SQL Server. Should be... Read more

Web Services Edge East and Cabana Night

2/19/2005

.NET Personal Security Service Orientation (SO) Web Services

2/19/2005

.NET ArchitecturePatterns Database Development Personal Security Speaking

I will be speaking at DevTeach this year in Montreal, Canada on June 18-22, 2005.My topics (so far -- waiting on a couple of other proposals, but this... Read more

Customizing the Microsoft .NET Framework Common Language Runtime

2/19/2005

.NET ArchitecturePatterns Books CLR Personal Rotor

2/14/2005

.NET ArchitecturePatterns Extreme Programming Personal Security Speaking

2/14/2005

.NET Security

2/14/2005

.NET CLR Personal Rotor

Check outChannel 9's interview of Suzanne Cook on the CLR Loader. Great interview!Suzanne's blogwas a big help to mewhen I was working through some... Read more

RI.NET User Group meeting cancelled tonight

2/10/2005

.NET Personal Security Speaking

2/10/2005

.NET Personal Security Speaking

2/8/2005

.NET ArchitecturePatterns Service Orientation (SO) Web Services

As you may know, and Sam points out, Indigo was unleashed today!Watch the video of Eric Rudder and Ari Bixhorn's keynotepresenting Indigo at the... Read more

Non-Admin Wiki site is up

2/4/2005

.NET Personal Security

2/4/2005

.NET Database Development

2/3/2005

.NET Boston .NET Architecture Study Group Personal Speaking

2/2/2005

.NET Personal Security Speaking

I will be speaking to the Rhode Island .NET Users Group (Providence, RI)on February 10. My topic is on security:Secure Coding for the .NET... Read more

Digital Blackbelt webcast series starts Friday

2/2/2005

.NET Security

Joe Stagner is starting the Digital Blackbelt webcast series on security this Friday with the following topic:MSDN Webcast: Digital Blackbelt Series:... Read more

Patterns Share

2/1/2005

.NET ArchitecturePatterns

1/31/2005

.NET ASP.NET Security

1/30/2005

Personal Security

1/30/2005

.NET ASP.NET Security

[By way of Brian Johnson] Take Advantage of ASP.NET Built-in Features to Fend Off Web AttacksDino summarizes the most common types of Web attacks and... Read more

Enterprise Library and Non-Admin Development

1/29/2005

.NET ArchitecturePatterns Security

1/28/2005

.NET ArchitecturePatterns Personal Security

1/27/2005

.NET ArchitecturePatterns Personal Security

I really like Ken Brubaker's post on Distilled: The .NET Developer's Guide to Windows Securitywhere he has summarized every item in Keith Brown's... Read more

Sample Application Security

1/25/2005

.NET ArchitecturePatterns ASP.NET COMPlus EnterpriseServices Database Development Security Service Orientation (SO)

1/23/2005

Personal

In about25 minutes from my writing this, the .NET Celebrity Auction for Aceh Aid willstart at 9:00 AM EST.Here is the Ebay... Read more

Digital Blackbelt Series: Defend your code from attacks

1/21/2005

.NET Security

This new series of Webcasts looks to be very good.Sign up at http://www.microsoft.com/seminar/events/series/digitalblackbelt.mspx. Read more

CLR Compiler Writing?

1/21/2005

.NET CLR Rotor

1/21/2005

.NET Security Speaking

1/18/2005

Security

1/17/2005

.NET Personal Security Speaking

1/17/2005

.NET Personal Security Speaking

1/16/2005

.NET Database Development Personal Security Speaking

I have added another topic to the ever growing data track for the upcoming New England Code Camp 3:SQL Server 2005 SecurityThis talk will focus on... Read more

Correction to .NET Rocks show time

1/14/2005

.NET Personal Speaking

1/13/2005

.NET Personal Security

1/13/2005

.NET ArchitecturePatterns

Congratulations to Werner Vogelson becoming the new CTO of Amazon.com![found by way of Julia Lerman] Read more

.NET Rocks on January 14, 9:00-11:00 pm, Eastern Time

1/11/2005

.NET Personal

My friend Aaron already posted I will be liveon .NET Rocks this week, so I will mention it as well. Read more

Interested in speaking at a Boston Code Camp?

1/8/2005

.NET Speaking

1/4/2005

.NET ArchitecturePatterns Security

I have been busy ramping up for some new work through my company lately (which I will mention in another post), and one resource I have looked forward... Read more

SSCLI.NET shutting down this week

1/4/2005

.NET CLR Rotor

[Per a post on DOTNET-ROTOR list]Per previous private email to project owners and announcement on Rotor mailing lists, SSCLI.NET is being closed down.... Read more

MVP

1/4/2005

.NET Personal

Here is avery nice surprise for the new year: I havebeen awarded the Microsoft MVP statusfor Visual C# for 2005!Of course, I know this doesn't... Read more

Pages: [1]