Hello all, this is Monty LaRue posting with some SDL related tools news. Microsoft has recently released an updated version of the Web Application Configuration Analyzer (WACA). While this tool isn’t intended to satisfy specific SDL requirements, it is valuable for performing best practices checks on your web application’s configuration. The checks span the Windows, IIS, ASP.NET, and SQL Server aspects of a deployment and are derived from standards that Microsoft uses to harden production servers. WACA is a good complement to the Attack Surface Analyzer tool which is applicable within the SDL Verification Phase.
Avoid online tax fraud
If you file your taxes over the Internet, it’s important to remember some common sense … Read more »
Suggested Resolutions for Cloud Providers in 2014 #3: Avoid acronym soup when discussing cloud services
In my prior two posts, I discussed my first two Suggested New Year’s Resolutions for … Read more »
Microsoft vs. the cyberbully
These days local and national news is littered with stories of bullying, mostly of the … Read more »