Comments on: ASP.NET 2.0 dumb's down request validation http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/ the rantings of michael eddington Fri, 15 Jul 2011 11:56:20 +0000 hourly 1 http://wordpress.com/ By: Ramesh Raja http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/#comment-85 Sun, 27 Jul 2008 16:03:13 +0000 http://phed.org/2008/04/23/aspnet-20-dumbs-down-request-validation/#comment-85 please guide to get VB.NET & ASP.NET Dump’s questions & answers

thank u

]]> By: Ramesh Raja http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/#comment-86 Sun, 27 Jul 2008 16:03:13 +0000 http://phed.org/2008/04/23/aspnet-20-dumbs-down-request-validation/#comment-86 please guide to get VB.NET & ASP.NET Dump’s questions & answers

thank u

]]> By: ASP.NET 2.0 dumb’s down request validation « Kartik Trivedi http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/#comment-83 Mon, 23 Jun 2008 08:44:27 +0000 http://phed.org/2008/04/23/aspnet-20-dumbs-down-request-validation/#comment-83 [...] phed.org » ASP.NET 2.0 dumb’s down request validation   [...]

]]> By: ASP.NET 2.0 dumb’s down request validation « Kartik Trivedi http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/#comment-84 Mon, 23 Jun 2008 08:44:27 +0000 http://phed.org/2008/04/23/aspnet-20-dumbs-down-request-validation/#comment-84 [...] phed.org » ASP.NET 2.0 dumb’s down request validation   [...]

]]> By: ASP.NET 2.0’s Dumbed Down Request Validation May Actually Improve Security « omg.wtf.bbq. http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/#comment-81 Sat, 03 May 2008 03:29:52 +0000 http://phed.org/2008/04/23/aspnet-20-dumbs-down-request-validation/#comment-81 [...] caught up with Michael Eddington’s short and sweet analysis of the request validation in ASP.NET 2.0. So far I’ve seen a few people blast it, but I think [...]

]]> By: ASP.NET 2.0’s Dumbed Down Request Validation May Actually Improve Security « omg.wtf.bbq. http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/#comment-82 Sat, 03 May 2008 03:29:52 +0000 http://phed.org/2008/04/23/aspnet-20-dumbs-down-request-validation/#comment-82 [...] caught up with Michael Eddington’s short and sweet analysis of the request validation in ASP.NET 2.0. So far I’ve seen a few people blast it, but I think [...]

]]> By: Rafal Los http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/#comment-79 Fri, 02 May 2008 03:04:54 +0000 http://phed.org/2008/04/23/aspnet-20-dumbs-down-request-validation/#comment-79 Well – this really means that Microsoft is putting the security aspects of application development back in the hands of developers. Although this breaks the uniformity principle (the more standardized, the safer) … it’s forcing developers to actually know what they’re doing… sort of.

Look for more vulns in .Net 2.0 code, coming to a web app near you.

]]> By: Rafal Los http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/#comment-80 Fri, 02 May 2008 03:04:54 +0000 http://phed.org/2008/04/23/aspnet-20-dumbs-down-request-validation/#comment-80 Well – this really means that Microsoft is putting the security aspects of application development back in the hands of developers. Although this breaks the uniformity principle (the more standardized, the safer) … it’s forcing developers to actually know what they’re doing… sort of.

Look for more vulns in .Net 2.0 code, coming to a web app near you.

]]> By: Calculated Decision » Blog Archive » ASP.NET 2.0 Worse Off Against XSS Than ASP.NET 1.1 http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/#comment-77 Sat, 26 Apr 2008 11:31:35 +0000 http://phed.org/2008/04/23/aspnet-20-dumbs-down-request-validation/#comment-77 [...] Eddington recently posted some interesting information regarding the differences in request validation being used in ASP.NET 1.1 vs. ASP.NET 2.0.  In addition to the information he’s posting, which are good things to know, I think this should [...]

]]> By: Calculated Decision » Blog Archive » ASP.NET 2.0 Worse Off Against XSS Than ASP.NET 1.1 http://phed.org/2008/01/23/aspnet-20-dumbs-down-request-validation/#comment-78 Sat, 26 Apr 2008 11:31:35 +0000 http://phed.org/2008/04/23/aspnet-20-dumbs-down-request-validation/#comment-78 [...] Eddington recently posted some interesting information regarding the differences in request validation being used in ASP.NET 1.1 vs. ASP.NET 2.0.  In addition to the information he’s posting, which are good things to know, I think this should [...]

]]>