Monthly Archives: May 2005

Nice idea – expose the Windows EventLog as an RSS feed. Just be sure to properly secure that page :) http://www.codeproject.com/aspnet/EventLogRss.asp  

Every time I do the CAS modules in DevelopMentor’s security course, we talk about all those different kinds of Permissions and students are quite impressed about the different ways to protected their code (especially with IdentityPermissions). A few slide later … Continue reading →

Nikhil has a very cool IE Helper/HttpModule combination for download on his blog, which does Warn you when debugging or tracing is enabled Extracts trace information from a page and shows it in a separate window Shows decoded ViewState/ControlState and … Continue reading →

It seems to be a common problem (telling from the msdn newsgroups) that some user/service accounts can’t write to the EventLog under Windows 2003. That’s what i answered (thought I post it here so i don’t have to repeat myself over … Continue reading →

just a summary of AzMan related content on this blog (will be updated when new stuff comes in) German Slides about AzMan AzMan and Non-Windows Accounts AzMan and Custom SIDs (Part One, Two, Three) Working with some AzMan types AzMan … Continue reading →

Last week I attended the Indigo SDR in Munich. First of all it was fun to hang out with my fellow DM buddies Marcus and Marvin, and of course Aaron, who was our instructor for the 3 days. I will not be … Continue reading →

Interesting stuff!  

A trial version of W2K3 R2 is for download here. Stuff i’d like to play around with Active Directory Federation Services New Authorization Manager features (SAML Tokens, ADAM Principles) Common Logging File System if i’d had more time, time, time….  

I came across this new whitepaper from NGS (David Litchfield’s company). It is about how automated scanners/attack tools work and how you could modify your web applications to make these kind of tools less successful. interesting read.  

I am currently playing around with a custom IPrincipal implementation that uses AzMan as a backing store. There are other implementations around, but what strikes me odd is, that most of them only use the role storage features – which … Continue reading →