Sunday, January 30, 2005
C# study group gets secure and chunky

The C# study group meeting last night was quite good.  More of what Michael wanted - lots of heckling and questions (even from the presenter to the audience).  Paul Lockwood gave us a brief synopsis of Writing Secure Code.  He gave quite an impressive demo of a buffer overrun.  I've always heard of buffer overruns, and I knew in theory what they were, but I've never really seen one.  He showed us (in ANSI C no less) how to do one, and I was extremely impressed.  Also a quick overview of SQL Injection (watch out for that XP_CMDSHELL!) and mitigation steps for the whole thing.  I can't say that (aside from the demo) it was new to me, Glen Gordon has been doing a fantastic job of pounding security into me at the several MSDN events I've gone to.

After the razzle-dazzle security overview, Keith Rome gave us a talk on SOA without using web services over HTTP.  Keith demo'd sending SOAP envelopes across TCP with distinct receiver facades, sender agents, chicken nuggets, and an architecture UML diagram laid out in MSPaint.  Great job, and Keith, don't forget to e-mail me that code before you nuke your VM.

-- Matt Ranlett

User Groups
1/30/2005 12:57:24 PM (Eastern Standard Time, UTC-05:00)  #    Trackback
Tracked by:
"supplements diet pills" (supplements diet pills) [Trackback]
"free online gay strip poker" (free online gay strip poker) [Trackback]

© Copyright 2012 Atlanta .NET Regular Guys
Theme design by Bryan Bell

newtelligence dasBlog 1.7.5016.2
Subscribe to this weblog's RSS feed with SharpReader, Radio Userland, NewsGator or any other aggregator listening on port 5335 by clicking this button.   RSS 2.0|Atom 0.2|CDF  Send mail to the author(s) | Page rendered at 5/22/2012 11:45:38 AM (Eastern Standard Time, UTC-05:00)

Reset | Slate | Movable Radio Heat | DasBlog | Just Html | Candid Blue | Discreet Blog Blue | Movable Radio Blue