- Debugging Django with Aptana | CodeSmart, Inc. on Running Django in IIS7/IIS8
- iminfense on Silverlight 4 – 070-506 Exam… Passed!
- trade show displays on Leveraging OData end-points in JSON format with JQuery
- Española Lawyers on Leveraging OData end-points in JSON format with JQuery
- death records on Leveraging OData end-points in JSON format with JQuery
TagsAdaptive Design AJAX Android ASP.NET MVC 3 Building Search Filters Certification Django Django in IIS EF Entity Framework Fiddler2 Gotchas Hacking HTML5 INotifyPropertyChanged IPMA JQuery JSON Mobile MONO MONO for Android OData PHP PropertyChanged Python RDLC Responsive Design RIA Services Toolkit Security Setup and Configuration Silverlight Silverlight 4 SQL SQL Injection SQL Server SSRS Table Value Parameters Technology Philosophy Testing Training WAMP WPF XAML
When attempting to install and configure Apache to run on your Windows 2008 server in order to leverage MySQL and PHP based web-frameworks… you may realize that your normal Windows Integrated Security websites are no-longer running and actually prevent you from accessing them. (This occurs only if you’re using the standard port 80 to access your website.) This is because the WAMP install package and other similar packages that configure Apache to run on a Windows Server, typically modify the “hosts” file burried in your Windows directory.
While presenting at the IPMA, I demonstrated to the 150+ person audience how easy it is to hijack another user’s credentials within an ASP.NET MVC 3 application that hasn’t been vetted for coding-practices. In this article, I will show a video of me re-demonstrating that attack, exactly how to fix it, and post the source-code [...]
Alright, after a long… ok, really long… wait I have finally gotten around to posting the content folks were asking for from the recent IPMA security presentation. The source-code and walk-thrus are below. First up is the SQL-Server injection problem. There are many ways that a hacker can exploit vulnerabilities, and SQL Server injection is [...]
Today, I delivered a basic 3-hour session on areas to focus on when hardening security in WA State Agencies. I mainly focused the first half of the presentation on common best-practice methods like clear lines of communication between Project Managers and Network, Security, and Database Administrators as well as practicing good coding practices such as peer-programming, code-reviews, and the like. I finished off the first 2 hours be demonstrating the use of Fiddler2 and how it could be used to probe, and then attack an ASP.NET MVC application.
The impact is that “RIA Services Toolkit” modifies your Silverlight Project file such that any linked Web projects will be scanned for “Silverlight enabled WCF Services”. Once any WCF services are found, VS2010 will automatically generate a GeneratedWCFClientCode hidden folder and drop the service proxy class in it at compile time! (Similar to how it generates the Generated_Code folder for RIA Services proxy classes.) It also automatically appends or overwrites the appropriate settings in the ServiceReferences.ClientConfig file typically associated with WCF references from Silverlight.
The files for the last day! My next post will go into a bit more detailed description of each of these. This was the final day of introductory training for Washington State agency I.T. staff on Silverlight 4. Training today covered offline disconnected Data queries, Unit-Testing asynchronous methods, working with Effiproz, leveraging COM Interop and [...]
The first day of Silverlight 4 training took a slight deviation from the original agenda. Based on a “show of hands”, I decided to delve into a 1-hour session on the basics of creating XAML and what Silverlight is meant to do. I also discussed where its getting competition from and how it should fit into [...]
Today I passed the first-ever Silverlight-specific Microsoft Certification to be released! The exam is # 070-506. It checks on your skills with :
Data-Binding, INotifyPropertyChanged, and ObservableCollection stuff.
VisualStateManager, Control-Style Templates, Resource Dictionaries, and XAML Layout
Printing, Text Globalization, Cross-Domain Service access, and WCF experience.
Silverlight offers huge benefits to shops that already leverage .NET languages to develop web and windows-based applications. It’s strongly-typed, it supports a wide array of dynamic and interactive controls, it enables outstanding visual effects, its data-binding capabilities are second-to-none, and it draws the user in to the web experience.