"Code Access Security (CAS) ? "Guilty until proven Innocent" (Partially Trusted Code) "
Grok Headline matches for "Code Access Security (CAS) ? "Guilty until proven Innocent" (Partially Trusted Code) "
Guilty Until Proven Innocent For This
ISP
Guilty Until Proven Innocent For This
ISP
09/02/2004 05:50 PMAn ISP in the UK has decided that all these legal processes with
takedown notices and figuring out who's sharing what with whoever else
is just way too much work. Instead, it's much, much easier to simply
declare
everyone guilty and block all P2P traffic, unless you come begging
for it with a very, very good reason -- at which point they might
allow you your P2P license, and let you use P2P applications. Seems
like a good way to encourage people to go check out the competition.
BitTorrent: Guilty Until Proven Innocent
BitTorrent: Guilty Until Proven Innocent
03/25/2005 07:27 PMWhile BitTorrent certainly is used for unauthorized sharing of
content, it's increasingly being used as a legitimate distribution
mechanism. While it unfairly gets lumped in with things like Kazaa
and Grokster, BitTorrent is just a protocol. It's like blaming FTP or
SMTP for file sharing -- and both certainly are used to share
unauthorized files. However, because BitTorrent is considered P2P
some less than clueful folks seem to think it must be illegal. This
leads to bizarre situations where
students are losing their network access for "illegal P2P
activity" when no illegal activity occurred at all. Instead, the
school's IT folks seem to assume that BitTorrent, by nature of being
P2P can only be used for illegal acts. I'm assuming they'll be
banning FTP next. The school
could claim that they're banning
it due to the traffic, but they specifically pointed to the legal
issue, suggesting that all of those entertainment industry subpoenas
appear to be making some universities a little trigger happy on
yanking internet access.
Guilty until proven innocent - DRM the
mobile phone way
Guilty until proven innocent - DRM the
mobile phone way
07/15/2004 08:30 AMTrying, but probably failing, to make phones pigopolist-friendly
Internet porn: Guilty till proven
innocent
Internet porn: Guilty till proven
innocent
09/01/2004 06:16 AMZDNet UK Sep 1 2004 10:42AM GMT
MSDN TV: Basic Principles of Code Access
Security
MSDN TV: Basic Principles of Code Access
Security
02/12/2004 06:11 PMCode Access Security (CAS) brings a new security paradigm to writing
code for Windows. In this episode, Matt Lyons presents some of the
basic principles of CAS - in particular, the effects of default CAS
policy - and how it relates to the average .NET developer.
Beware of Fully Trusted Code
Beware of Fully Trusted Code
04/09/2004 03:57 PMThe vast majority of managed applications run with full trust, but
based on my experience teaching .NET security to developers with a
broad range of experience, most really don't understand the
implications of fully trusted code. So I've pulled together a number
of examples where fully trusted code can skirt around common language
runtime (CLR) security features, starting each with a question that
seems to have an obvious answer.
Microsoft to extend access to its code
Microsoft to extend access to its code
04/22/2004 01:02 AMBoston Globe Apr 22 2004 5:19AM GMT
"Code Snippets: Store, sort and share
source code, with tag goodness"
"Code Snippets: Store, sort and share
source code, with tag goodness"
04/09/2005 09:08 AMCode Snippets: Store, sort and share
source code, with tag goodness
Code Snippets: Store, sort and share
source code, with tag goodness
04/08/2005 07:52 PMCode Snippets: Store, sort and share source code, with tag
goodness
bigbold.com/snippets
track this
site | 5 links
Microsoft Expands Government Access to
Code
Microsoft Expands Government Access to
Code
09/20/2004 04:53 PMosOpinion Sep 20 2004 8:39PM GMT
Governments get access to Office source
code
Governments get access to Office source
code
09/20/2004 04:34 AMZDNet UK Sep 20 2004 7:25AM GMT
Microsoft expands source code access
Microsoft expands source code access
09/19/2004 09:09 PMSydney Morning Herald Sep 20 2004 1:15AM GMT
OpenBase acquires Code Builder, RB
database code generator
OpenBase acquires Code Builder, RB
database code generator
03/23/2005 12:25 AMCONCORD, NEW HAMPSHIRE, USA -- March 22, 2005 -- OpenBase
International, Ltd., has acquired Code Builder, developed by Open
Minded Solutions. Code Builder is a database application code
generator for REALbasic, a cross-platform development environment for
MacOS X, Windows and Linux platforms.
UK government to gain access to
Microsoft Office code
UK government to gain access to
Microsoft Office code
09/20/2004 08:57 AMvnunet.com Sep 20 2004 12:54PM GMT
Microsoft giving government access to
source code
Microsoft giving government access to
source code
09/19/2004 09:09 PMthestar.com.my Sep 20 2004 1:33AM GMT
Microsoft Expands Access to Windows
Source Code
Microsoft Expands Access to Windows
Source Code
07/19/2004 03:25 PMAll Most Valued Professionals within the Microsoft platforms community
and living within the 27 eligible countries worldwide will now be able
to access Windows source code at no cost.
Returning Your Available Character Code
Sets And Code Pages Via T-SQL
Returning Your Available Character Code
Sets And Code Pages Via T-SQL
08/18/2004 10:37 AMAccess and reusable ASP code make for
quick intranet applications
Access and reusable ASP code make for
quick intranet applications
07/14/2002 11:29 PMCNET Jul 14 2002 10:13PM ET
Microsoft Expands MVPs' Windows
Source-Code Access
Microsoft Expands MVPs' Windows
Source-Code Access
07/20/2004 09:36 AMMicrosoft announced last October it was providing a subset of its
Windows Most Valuable Professionals with access to Windows 2000,
Windows XP and Windows Server 2003 source code under its Shared Source
program. On Monday, Microsoft opened up the Windows source-code-access
program to an even broader set of MVPs.
Microsoft Offers Access to Office 2003
Source Code
Microsoft Offers Access to Office 2003
Source Code
09/20/2004 08:56 AMWebHosting.Info Sep 20 2004 1:13PM GMT
Rights Groups Seek E-Vote System Source
Code Access
Rights Groups Seek E-Vote System Source
Code Access
06/29/2004 05:28 PMCivil rights advocates and computer experts are urging all counties
planning to use touch-screen, or "direct recording electronic," voting
systems to immediately implement security precautions, including
independent expert access to the systems' source code.
Microsoft expands program giving
government access to source code
Microsoft expands program giving
government access to source code
09/19/2004 11:09 PMCNEWS Sep 20 2004 2:34AM GMT
Code Repository and Code Packs
Code Repository and Code Packs
04/11/2005 03:02 PMSecurity issues of using shared code
Security issues of using shared code
08/02/2004 03:25 PMDirect and Related Links for
'Security issues of using shared code'
“If you’ve ever written a lot of code, you’ve
probably found yourself thinking, ‘Someone must have already
tackled this problem.’ You may even have gone a step further and
done a Google search for relevant code that you might be able to
incorporate into your project. But have you ever stopped to think
about the security ramifications of using this type of code? If not,
you should!…
[SECURITY] [DSA 624-1] New zip packages
fix arbitrary code execution
[SECURITY] [DSA 624-1] New zip packages
fix arbitrary code execution
01/05/2005 11:55 AMMartin Schulze (Jan 05 2005)
Scob code still widespread, says
security expert
Scob code still widespread, says
security expert
07/09/2004 06:22 AMComputer Weekly Jul 9 2004 11:10AM GMT
Hackers crack N-Gage security code
Hackers crack N-Gage security code
11/17/2003 02:05 AMiafrica.com Nov 17 2003 1:02AM ET
DirecTV "Consumer Guilty before proved
Innocent"
DirecTV "Consumer Guilty before proved
Innocent"
10/28/2003 11:07 PMWired ask some hard questions of DirecTV. It is obvious they are able
to circumvent the innocent until proved guilty...
Expert Tips for Finding Security Defects
in Your Code
Expert Tips for Finding Security Defects
in Your Code
10/31/2003 12:37 AMReviewing code for security defects is a key ingredient in the
software creation process, ranking alongside planning, design, and
testing. Here the author reflects over his years of code security
reviews to identify patterns and best practices that all developers
can follow when tracking down potential security loopholes. The
process begins by examining the environment the code runs in,
considering the roles of the users who will run it, and studying the
history of any security issues the code may have had. After gaining an
understanding of these background issues, specific vulnerabilities can
be hunted down, including SQL injection attacks, cross-site scripting,
and buffer overruns. In addition, certain red flags, such as variable
names like "password", "secret," and other obvious but common security
blunders, can be searched for and remedied.
[SECURITY] [DSA 617-1] New libtiff
packages fix arbitrary code execution
[SECURITY] [DSA 617-1] New libtiff
packages fix arbitrary code execution
12/25/2004 05:09 PMMartin Schulze (Dec 24 2004)
[SECURITY] [DSA 701-1] New samba
packages fix arbitrary code execution
[SECURITY] [DSA 701-1] New samba
packages fix arbitrary code execution
03/31/2005 03:23 PMMartin Schulze (Mar 31 2005)
[SECURITY] [DSA 621-1] New CUPS packages
fix arbitrary code execution
[SECURITY] [DSA 621-1] New CUPS packages
fix arbitrary code execution
12/31/2004 04:35 PMMartin Schulze (Dec 31 2004)
[SECURITY] [DSA 493-1] New xchat
packages fix arbitrary code execution
[SECURITY] [DSA 493-1] New xchat
packages fix arbitrary code execution
04/21/2004 04:56 PMMartin Schulze (Apr 21 2004)
[SECURITY] [DSA 548-1] New imlib
packages fix arbitrary code execution
[SECURITY] [DSA 548-1] New imlib
packages fix arbitrary code execution
09/16/2004 05:27 PMMartin Schulze (Sep 16 2004)
More attack code surfaces for recent MS
security holes
More attack code surfaces for recent MS
security holes
04/26/2004 01:18 PMJust days after Microsoft Corp. warned its customers about the release
of code that can exploit a hole in its Secure Sockets Layer (SSL)
library, new code that claims to exploit another recently disclosed
hole surfaced on a French language Web site.
[SECURITY] [DSA 490-1] New Zope packages
fix arbitrary code execution
[SECURITY] [DSA 490-1] New Zope packages
fix arbitrary code execution
04/17/2004 03:16 PMMartin Schulze (Apr 17 2004)
[SECURITY] [DSA 619-1] New xpdf packages
fix arbitrary code execution
[SECURITY] [DSA 619-1] New xpdf packages
fix arbitrary code execution
12/30/2004 09:51 PMMartin Schulze (Dec 30 2004)
[SECURITY] [DSA 706-1] New axel packages
fix arbitrary code execution
[SECURITY] [DSA 706-1] New axel packages
fix arbitrary code execution
04/13/2005 07:34 PMPosted by Martin Schulze, Apr 13 2005
[SECURITY] [DSA 406-1] New lftp packages
fix arbitrary code execution
[SECURITY] [DSA 406-1] New lftp packages
fix arbitrary code execution
01/05/2004 02:51 PMMartin Schulze (Jan 04 2004)
Grok Description matches for "Code Access Security (CAS) ? "Guilty until proven Innocent" (Partially Trusted Code) "
GrokA matches for "Code Access Security (CAS) ? "Guilty until proven Innocent" (Partially Trusted Code) "
"Code Access Security (CAS) ? "Guilty until proven Innocent" (Partially Trusted Code) "
