The Web and Microsoft : Securityhttp://blogs.msdn.com/klevereblog/archive/tags/Security/default.aspxTags: Securityen-USCommunityServer 2.1 SP1 (Build: 61025.2)Microsoft Source Code Analyzerhttp://blogs.msdn.com/klevereblog/archive/2008/06/25/microsoft-source-code-analyzer.aspxWed, 25 Jun 2008 22:35:00 GMT91d46819-8472-40ad-a661-2c78acb4018c:8653022klevereblog2http://blogs.msdn.com/klevereblog/comments/8653022.aspxhttp://blogs.msdn.com/klevereblog/commentrss.aspx?PostID=8653022http://blogs.msdn.com/klevereblog/rsscomments.aspx?PostID=8653022<p>My team recently had discussions with our security on ways we can help developers deliver more secure code on the web.&nbsp; One outcome of that is the Microsoft Source Code Analyzer.&nbsp; This tool is specifically designed to mitigate risk from sites that are vulnerable to SQL Injection Attacks.&nbsp; This type of attack can particularly problematic for free code downloaded from the internet.&nbsp; This release scans Classic ASP code for these types of flaws.&nbsp; You can find it <a href="http://support.microsoft.com/kb/954476" title="Tool" mce_href="http://support.microsoft.com/kb/954476">here</a>.&nbsp; If your hoster pass it on to your customers.</p><p>&nbsp;</p><p><br></p><img src="http://blogs.msdn.com/aggbug.aspx?PostID=8653022" width="1" height="1">SecuritySome interesting stats on Web Site Defacements by OS and Web Serverhttp://blogs.msdn.com/klevereblog/archive/2008/03/15/some-interesting-stats-on-web-site-defacements-by-os-and-web-server.aspxSat, 15 Mar 2008 21:23:00 GMT91d46819-8472-40ad-a661-2c78acb4018c:8235351klevereblog3http://blogs.msdn.com/klevereblog/comments/8235351.aspxhttp://blogs.msdn.com/klevereblog/commentrss.aspx?PostID=8235351http://blogs.msdn.com/klevereblog/rsscomments.aspx?PostID=8235351<P>Linux leads Windows by a wide margin.&nbsp; It's interesting though that the synopsis is not that Windows has improved greatly from a web server security perspective, but rather, that people migrated from Windows to Linux and thus the sites are still attacked. </P> <P>&nbsp;I got the link from Slashdot.&nbsp; I didn't bother to look at the comments there because I pretty much can already guess what they say.&nbsp; Check for yourself and form your own conclusion.</P> <P><A href="http://www.zone-h.org/content/view/14928/30/" mce_href="http://www.zone-h.org/content/view/14928/30/">http://www.zone-h.org/content/view/14928/30/</A></P><img src="http://blogs.msdn.com/aggbug.aspx?PostID=8235351" width="1" height="1">IISApacheSecurityLinux