Archives
Archives from 2005
12/29/2005
It has been a busy month and a half since I last blogged -- too busy. But, it has been fun as I have done a few security code audits, lots of...
Read more 11/18/2005
Read more 11/15/2005
Read more 11/11/2005
Read more 11/10/2005
I will be speaking tonight to the New England SQL Server User Group at Microsoft in Waltham, MA. My friend Andrew Novick will give a talk on SQL...
Read more 11/10/2005
The MAD Security Code Camp site has been updated with photos from the event. This one is priceless.
Read more 11/8/2005
Read more 11/7/2005
I was questioned briefly last week forthis article in Computerworld:Robert Hurlbut, an independent software consultant in Worcester, Mass., said SQL...
Read more 11/7/2005
Read more 11/3/2005
Read more 10/31/2005
Read more 10/26/2005
I will be speaking on Threat Modeling for Web Applications at the local OWASP Boston chapter meeting on November 2, at the Microsoft, Waltham, MA...
Read more 10/26/2005
My friends Adam Machanic and Andrew Novick led a Mini SQL Server Code Camp last Saturday in Waltham, MA. I was originally planned to attend, but...
Read more 10/25/2005
Read more 10/16/2005
Read more 10/14/2005
I had a great time in Orlando at VSLive!. The hotel we stayed at (Walt Disney World Dolphin Hotel)is amazing! This hotel is HUGE ... several of us...
Read more 10/14/2005
Read more 10/9/2005
Read more 10/9/2005
I was excited to see Shawn Farkas' article available on "Discover Techniques for Safely Hosting Untrusted Add-Ins with the .NET Framework 2.0", which...
Read more 10/8/2005
I will be speaking at the Mid-Atlantic (MAD) Security Code Camp at the Microsoft offices in Reston, VA on October 29. I am really looking forward to...
Read more 10/4/2005
Read more 10/3/2005
Read more 10/3/2005
Read more 9/30/2005
Brian Johnson has written a new article on MSDN describing the new security features of Visual Studio 2005. Take a look -- I have been playing with...
Read more 9/26/2005
I am catching up after another very successful New England Code Camp weekend. I am getting ready to head out to the MVP Global Summit 2005in Seattle,...
Read more 9/23/2005
Read more 9/18/2005
I have been working on severalpresentations on security,SQL Server, and transactions topicsfor upcoming conferences and user group talks. These always...
Read more 9/18/2005
Kirk Allen Evans talks about his adventures in discussing with several at PDC one of my past favorite topics: distributed transactions. I have renewed...
Read more 9/17/2005
I noticed Dino Viehland posted a notice regarding fiber mode support in SQLCLR for SQL Server 2005: Fiber mode is gone...I remember following Dino's...
Read more 9/15/2005
A couple of weeks ago while flying to and from Microsoft in Redmond, I read most of this book (still finishing it between bits of spare time on my...
Read more 9/4/2005
Read more 8/31/2005
Read more 8/28/2005
Nigel Watling (great start of a blog, by the way -- subscribed! RSS) has a very nice summary of some material on developing as a non-administrator and...
Read more 8/26/2005
Shawn Farkas has posted an excellent summary of the newest features and changes for Security in .NET 2.0 on his blog. He also links to Keith Brown and...
Read more 8/16/2005
Read more 8/16/2005
Read more 8/13/2005
I am putting this here as a nice placeholder (for myself and others):The patterns and practices folks have just updated their list of Security-related...
Read more 8/11/2005
Read more 8/11/2005
Read more 8/11/2005
Read more 8/3/2005
Thom Robbins mentions a Mini Code Camp for SQL Server Programming: From 2000 to 2005. This will be on October 22 (Saturday), from 8:30 AM - 5:00...
Read more 8/3/2005
Read more 7/23/2005
Rick Samona has a webcast on MSDN TV discussing how developers can write secure code using the new enhancements in Visual Studio 2005. Take about...
Read more 7/21/2005
Read more 7/21/2005
Richard Turner (Product Manager in Microsoft's Web Services Strategy team), has published the first of a series of papers that provides guidance on...
Read more 7/20/2005
Read more 7/20/2005
I will be speaking at the Heartland Developers Conference 2005 in Cedar Rapids, Iowa on October 12-14, 2005. My topic will be Security Changes in .NET...
Read more 7/20/2005
Paul Fallonposts some good news (and excellent description) aboutEnterprise Services in .NET 2.0. Systems.Transactions already features Transaction...
Read more 7/19/2005
For a slightly different change of pace for me, I will be speaking at the New England Visual Basic Professionals User Group meetingat the Microsoft...
Read more 7/15/2005
Concurrency is a topic I have been interested in over the last year, but especially over the last six months with one of my consultingprojects...
Read more 7/12/2005
Read more 7/10/2005
As Don and Julie mention, the first Indigo programming book, Programming Indigo : Code Name for the Unified Framework for Building Service-Oriented...
Read more 7/10/2005
(purely personal)From the math side of me:Today, my age = ((4! * 3)/ 2) + 1Or, put another way,my age is a prime number, as well as this...
Read more 7/8/2005
It's been a busy week, but I had a chance to attenda talk this week. By chance, I happened to catch the local OWASP (Open Web Application Security...
Read more 7/8/2005
In my daily life as a consultant, I work on solving problems for clients. That usually means one of two things: I develop new solutions from scratch...
Read more 7/8/2005
I received this book, Honeypots for Windows by Roger A. Grimes (published by Apress), a couple of months ago to review. I have read a chapter hear and...
Read more 7/5/2005
Larry Ostermanoffers some words of wisdom regarding the differnce between a developer understanding cryptography (as in "which algorithm should I use"...
Read more 7/1/2005
I spent the last couple of days at VSLive! Boston. I gave a talk on Wednesday on "Writing Secure Plug-Ins Applications in .NET". You can pick up the...
Read more 7/1/2005
I was informed that today it is official: I have been moved from the Visual C# MVP group into the newly formed Application Developer Security MVP...
Read more 7/1/2005
Looking around, I found a few interesting East Coast freeevents that are soon or in the future:Richard Hale Shaw is speaking on various C# 2.0...
Read more 6/23/2005
Adam captured some of the fun the SQL Server bloggers had before DevTeachhere.
Read more 6/23/2005
Read more 6/23/2005
One highlight (among many) of my stay in Montreal for DevTeachwas meeting Montreal natives Nicole Calinoiu and her husband Michel Bordeleau for dinner...
Read more 6/17/2005
This week has been extremely busy with catching up after TechEd, getting the latest SQL Server 2005 June CTP installed on a VPC, playing with the...
Read more 6/13/2005
Read more 6/7/2005
Read more 6/6/2005
I arrived Sunday noon. It was a little early for check-in to my hotel (not one of the standard TechEd hotels, unfortunately), so the rooms weren't...
Read more 6/6/2005
One of my first published articles came out a few days agoin the June, 2005 issue of .NET Developers Journal.This is a security focused issue with...
Read more 6/5/2005
I have been spending most of the day clearing out some work and getting ready for my trip to TechEd early tomorrow morning (Sunday). If your there, I...
Read more 6/3/2005
Read more 5/31/2005
This is a great announcement for those interested in architecture topics:"Shortly after joining the Architecture Strategy Team, we worked with MSDN to...
Read more 5/19/2005
Eric Marvets, the Security Samurai, who spoke at last weekend's Atlanta Code Camp, now has a security blog. Eric did some work for me (through my...
Read more 5/19/2005
(Purely personal)Thom Robbins has done a great thing and brought Star Wars 3 to New England (OK, not really -- it was already going to be here, but...
Read more 5/18/2005
This is a nice welcome addition to the threat modeling literature, and especially for web application security. Take a look. Excellent resource!...
Read more 4/29/2005
I scheduled some time ago to attend Devscovery next week in Washington, DC, but I have now had to postpone it to the next time which is at theend of...
Read more 4/27/2005
The TechEd BOF (Birds of a Feather) voting is over and mine wasaccepted. Here is the schedule:Developing software as a non-administrator -Wed, June...
Read more 4/27/2005
I was planning toattend the "Got Indigo?" Day at Microsoft, Waltham, MA, but have had to put some hours in on finishing my current project. I will be...
Read more 4/27/2005
Read more 4/20/2005
I was asked last week and informed Friday that I was selected to be one of the Technical Experts at the Connected Systems Infrastructure (CSI) Track...
Read more 4/19/2005
Read more 4/13/2005
Read more 4/8/2005
Read more 4/8/2005
Here is an interesting find (a placemark for me mostly): Indogo SDR dry-runs that are in the form of webcasts. Gene Webb has the links here. [Found by...
Read more 4/8/2005
Read more 4/6/2005
Read more 4/1/2005
Read more 3/31/2005
As you may know, the long awaited Windows Server 2003 SP1 has finally reached RTM. Here is some technical information, and a Top Ten feature...
Read more 3/23/2005
I noticed over the last couple of days my "Writing Secure Plug-in Applications in .NET" session is listed for VSLive! Boston. This talk is similar to...
Read more 3/21/2005
My friend Kevin Hegg mentioned this link to me on Friday, but it wasn't live yet. But, it is now: Michael Howard mentions it's "live" status at...
Read more 3/21/2005
There is an MSDN TV overview of writing partially trusted applications with ASP.NET [found by way of Dominick Baier].
Read more 3/18/2005
Have you tried installing SQL Server 2005 yet? If so, how did it go for you?There is a survey the SQL Server team would like you to fill out:The Yukon...
Read more 3/18/2005
Read more 3/16/2005
Read more 3/15/2005
Read more 3/14/2005
Read more 3/10/2005
I submitted one of the first TechEd Birds of a Feather (BoF) sessions on this topic:Developing software as a non-administratorWe have all heard we...
Read more 3/9/2005
I will be speaking tonight on .NET Security 101 at the Connecticut Access UsersGroup in Farmington, CT (correction: not in Hartford, but near...
Read more 3/8/2005
I just noticed this today and was sad to learn that Hans Bethedied on Sunday at the age of 98. Bethe was one of the last (probably the last now) great...
Read more 3/3/2005
I got the same email as Romanregarding the availability of the SQL Server 2005 3rd CTP:Today, Microsoft released the third Community Technical Preview...
Read more 3/3/2005
Read more 2/23/2005
By now, I am sure you have seen or heardthe news about SHA1 being broken. In a somewhat timely fashion, I had been (re)reading Bruce Schnier and Niels...
Read more 2/23/2005
Daniele Muscetta (of Microsoft) posted a nice summary of some recent articles on Rootkits. He also included information on SysInternals' latest...
Read more 2/23/2005
I saw this last night, and Dana Epp has posted a pointer:Peter Torr has done it again. He has written an EXCELLENTarticle on writing a practical...
Read more 2/23/2005
Our second Boston Code Brew meeting is tonight. Tonight, we are focusing on "all things database" with a special emphasis on SQL Server. Should be...
Read more 2/19/2005
Read more 2/19/2005
I will be speaking at DevTeach this year in Montreal, Canada on June 18-22, 2005.My topics (so far -- waiting on a couple of other proposals, but this...
Read more 2/19/2005
Read more 2/14/2005
Read more 2/14/2005
Read more 2/14/2005
Check outChannel 9's interview of Suzanne Cook on the CLR Loader. Great interview!Suzanne's blogwas a big help to mewhen I was working through some...
Read more 2/10/2005
Read more 2/10/2005
Read more 2/8/2005
As you may know, and Sam points out, Indigo was unleashed today!Watch the video of Eric Rudder and Ari Bixhorn's keynotepresenting Indigo at the...
Read more 2/4/2005
Read more 2/4/2005
Read more 2/3/2005
Read more 2/2/2005
I will be speaking to the Rhode Island .NET Users Group (Providence, RI)on February 10. My topic is on security:Secure Coding for the .NET...
Read more 2/2/2005
Joe Stagner is starting the Digital Blackbelt webcast series on security this Friday with the following topic:MSDN Webcast: Digital Blackbelt Series:...
Read more 2/1/2005
Read more 1/31/2005
Read more 1/30/2005
Read more 1/30/2005
[By way of Brian Johnson] Take Advantage of ASP.NET Built-in Features to Fend Off Web AttacksDino summarizes the most common types of Web attacks and...
Read more 1/29/2005
Read more 1/28/2005
Read more 1/27/2005
I really like Ken Brubaker's post on Distilled: The .NET Developer's Guide to Windows Securitywhere he has summarized every item in Keith Brown's...
Read more 1/25/2005
Read more 1/23/2005
In about25 minutes from my writing this, the .NET Celebrity Auction for Aceh Aid willstart at 9:00 AM EST.Here is the Ebay...
Read more 1/21/2005
This new series of Webcasts looks to be very good.Sign up at http://www.microsoft.com/seminar/events/series/digitalblackbelt.mspx.
Read more 1/21/2005
Read more 1/21/2005
Read more 1/18/2005
Read more 1/17/2005
Read more 1/17/2005
Read more 1/16/2005
I have added another topic to the ever growing data track for the upcoming New England Code Camp 3:SQL Server 2005 SecurityThis talk will focus on...
Read more 1/14/2005
Read more 1/13/2005
Read more 1/13/2005
Congratulations to Werner Vogelson becoming the new CTO of Amazon.com![found by way of Julia Lerman]
Read more 1/11/2005
My friend Aaron already posted I will be liveon .NET Rocks this week, so I will mention it as well.
Read more 1/8/2005
Read more 1/4/2005
I have been busy ramping up for some new work through my company lately (which I will mention in another post), and one resource I have looked forward...
Read more 1/4/2005
[Per a post on DOTNET-ROTOR list]Per previous private email to project owners and announcement on Rotor mailing lists, SSCLI.NET is being closed down....
Read more 1/4/2005
Here is avery nice surprise for the new year: I havebeen awarded the Microsoft MVP statusfor Visual C# for 2005!Of course, I know this doesn't...
Read more Pages: [1]