Category Archives: Uncategorized

Here you can find the slides I used and the SQL injection demo. For those who asked: the book will be released around summer time at MS Press the course will debut in may and will run regularly from then on … Continue reading →

The MSDN Ireland tour was a blast! I met so many nice people and it was interesting to see the VB.NET side of the world. Thanks to Clare and Aoife for the hospitality and taking so good care of me … Continue reading →

Shell Extension für neue Visual Studio Projekte und “Open as WebSite” Shell Extension spart soviel Zeit…  

Next week (monday and tuesday) I am doing the MSDN roadshow in Dublin and Belfast talking about ASP.NET Security to VB.NET developers. Never been to Ireland before and looking forward exploring the local beer ;) If you are near, stop by … Continue reading →

Head.WriteLine() heisst der nagelneue Blog einer meiner hoch geschätzten Kollegen – Head.Explode() wäre wohl passender – massenhaft exzellente Infos rund um WinForms und Design-Time-Development. Für alle die es genauer wissen wollen :) http://headwriteline.blogspot.com/  

recommended! ShellNew Extension for Visual Studio Solutions “Open as WebSite” Shell Extension for ASP.NET File System Projects  

Im Rahmen der DevDays werde ich im Mai zusammen mit Sebatian Weber Vorträge über den Praxis-Einsatz der Security Features von .NET 2.0 halten. Mein Fokus wird dabei auf der Integration in die Windows Security Infrastruktur, sichere Netzwerk Authentifizierung und Kommunikation sowie das Schützen … Continue reading →

Dinis ist ein alter Hase im Application Security Bereich – sehr unterhaltsames Video über Sicherheits-Schwächen in Anwendungen. Interessant wie .NET Security von einem der Hardliner der Szene gesehen wird. Sehr empfehlenswert. http://www.roadtowinfx.com/ddd/2005-10-22_DeveloperDay_session06.wmv  

This problem yesterday lead Shawn to write this entry today – which I was just waiting for to appear online…. Whenever you get a SecurityException while running in partial trust (e.g. ASP.NET medium trust), you most probably won’t have the … Continue reading →

If you use SSL with client certificates, there are a number of interesting things you can do with the certificates in your ASP.NET application, e.g. do authentication/authorization based on certificate properties extract the UPN (if it is a Windows enterprise … Continue reading →