Welcome to MSDN Blogs Sign in | Join | Help

Browse by Tags

All Tags » Randomness » Security   (RSS)
Friday, April 07, 2006 8:26 PM

When facts get in the way of a good argument

I've wanted to write this blog for a long time, but never gotten around to it. It's a very simple observation, but one that too many people fail to make. Maybe something will come of it :-) Oftentimes you will see something like the following on a web
Posted by ptorr | 3 Comments
Filed under: ,
Wednesday, August 10, 2005 8:58 PM

HELLO? CAN YOU HEAR ME?!?

As most of my friends know, I'm a pretty jumpy person. And, of course, most of those same friends like to exploit that fact for their own amusement from time to time (thanks to J e f f for almost running me over the other day). The fact that I lose 5
Posted by ptorr | 0 Comments
Filed under: ,
Wednesday, June 15, 2005 1:39 AM

So that's what happens...

Today I did something I haven't done in a long time: I downloaded and installed some unsigned code while running as a local administrator on my home computer. I had to stare at the Security Warning dialog from Windows for quite a few moments before I
Posted by ptorr | 2 Comments
Filed under: ,
Tuesday, December 21, 2004 8:16 AM

I love Slashdot

The comments from my last post are still coming in thick and fast. Thanks to everyone who didn't just swear at me (and if I didn't approve your comment, it was because it had too much profanity in it). First things first: I was wrong about uninstalling
Posted by ptorr | 244 Comments
Filed under: ,
Thursday, December 16, 2004 3:17 PM

Career Update

Just thought I’d let people know that I have moved from the Visual Studio Tools for Office team to the Secure Windows Initiative team. Exactly what that means for my blogging activities, I don’t yet know. I haven’t really been doing much of it lately
Posted by ptorr | 18 Comments
Filed under: ,
Thursday, October 14, 2004 4:01 PM

Windows Update, Automatic Update, and SAFER

Jeroen points out an annoying problem with the new version of Windows Update in his last comment -- it doesn't work from a RunAs-ed Internet Explorer session. This is a known problem with Windows Update that will hopefully be addressed in a future release.
Posted by ptorr | 5 Comments
Filed under: ,
Friday, April 16, 2004 1:20 AM

Clear Plastic Cups at SEATAC

This is about airport security, not code security ;-) Raymond has a blog today about airport security , and it reminded me of something that always puzzles me. The Seattle / Tacoma International Airport has, as you can probably imagine, several STARBUCKS®
Posted by ptorr | 12 Comments
Filed under: , ,
Saturday, March 20, 2004 4:41 AM

Windows XP SP 2

I'm running Windows XP SP 2 RC1 now, and I've already logged a handful of bugs -- mostly against the new IE security settings :-) -- but I haven't had any problems yet. (Well, my tablet froze on me last night, but it hasn't happened again so I don't know
Posted by ptorr | 2 Comments
Filed under: ,
Wednesday, February 11, 2004 5:24 AM

A ridiculous "security" tool

Reading Bugtraq today I saw this message about a "vulnerability" in Windows. Apparently -- get this -- if someone has the ability to install arbitrary system software on your computer, they can replace the SLL library used by IE and log all your internet
Posted by ptorr | 8 Comments
Filed under: ,
Monday, February 02, 2004 6:31 PM

IE patch and other stuff

It's time to go to Windows Update to get the latest IE updates, including the %01 bug address bar bug. In other news, Dana has a blog entry about the WSH security settings . Jeroen has an interesting blog about building a JVM on .NET . The X5 machine
Posted by ptorr | 4 Comments
Filed under: , ,
Tuesday, January 27, 2004 5:59 AM

Calling class constructors twice

Yesterday I blogged about a bug that you could exploit in JScript .NET, and the other day I made a comment on Eric's blog about compiler-enforced rules versus runtime-enforced rules. Here's a quick story about one such rule that we fixed before the CLR
Posted by ptorr | 5 Comments
Filed under: , ,
Saturday, November 29, 2003 4:52 AM

Things not to do with client-side script

Browser-based encryption
Posted by ptorr | 10 Comments
Filed under: ,
Thursday, October 23, 2003 2:21 AM

Watch out, there's a Kiwi about

Michael Howard let loose on the net!
Posted by ptorr | 0 Comments
Filed under: ,
Wednesday, October 01, 2003 6:44 PM

VSTO Press Coverage

The VSTO release has been picked up by SD Times . Hopefully this is the first of many stories. Unfortunately (but understandably) they don't explain the security story correctly, but that's a minor point. There's also something about Microsoft Office
Posted by ptorr | 0 Comments
 
Page view tracker