One of the first tips in The Pragmatic Programmer: From Journeyman to Master is about broken windows. The theory is that if you leave a broken window in a house, you’re less inclined to fix anything else and eventually the house is abandoned or otherwise abused. This of course relates originally to software development – [...]
The other day in Part I of this series I said I was going to write up some more articles about automating code review tools in your build process. Today I spent some time looking over CAT.NET and figuring out how it fits into my build process. CAT.NET is a static code analysis tools that [...]
The Connected Information Security Group blog at Microsoft recently published a couple of articles (part 1, part 2) about a tool recently released called CAT.NET. This is a static code analysis tool which reads a compiled programs code and looks for security problems such as null pointers, null references, and other problems specific to interpreted [...]
A few days ago I wrote about some of the software I use for personal password management. Today I’d like to write about a movement that could very well replace the need for all those passwords. I’m talking about identity federation using OpenID. Identity federation simply means that a user can log into one site, [...]
As a web technology person, I sign up for a lot of online accounts. Everything from personal photo sites to online banking, security wikis to open source projects. Recently I decided my password security was not the best because I only had about 8 standard passwords I would use across all my website accounts. I [...]
