Podcast: The Security Pyramid Part IV - Securing Your Code
This is the fourth and final episode in the series, "the security pyramid". This entry covers the topic of "Personal Health", securing your application code. We cover cross site scripting, SQL injection attacks and a number of other topics. This podcast is nearly half an hour long. The examples I talk about in the podcast are covered in the original post. Posts from the other 4 parts of the series are listed below. Thanks for listening!
Listen Here
Security Pyramid Podcast - Part III (The Neighborhood)
This is the third in a series of 4 podcasts (I know, it was supposed to be 3) on the subject of "the security pyramid". This one covers the topic of "the neighborhood" where your application lives. The topic covers security issues related to your server configuration, coldfusion, and integration with external resources. All of the material covered in the podcasts is also covered in the 5 posts listed below, although the podcasts often include items that are not in the posts. Click on Part III below for the written vresion of this particular podcast. Thanks for listening!
Listen Here
Security Pyramid Podcast - Part II
This is the second of 3 podcasts on the subject of "the security pyramid". This one covers the topic of "internal network policy". All of the material covered in the podcasts is also covered in the 5 posts listed below, although the podcasts often include items that are not in the posts. Thanks for listening!
Listen Here
Security Pyramid Podcast - Part I
This podcasts covers the first 2 sections of my recent series on the security pyramid, the introduction and the border patrol. The podcasts often include items that are not in the posts. Thanks for listening!
Listen Here
Becoming a Better Troubleshooter
Every week I seem to find myself dealing with intractable bugs or performance issues for CF Webtools' customers. Last week, for example, I found myself troubleshooting a JVM for a CF 7 customer, a Database performance issue, a JMS issue and a persistent memory leak in a COM object. That's a pretty typical week for me.
I like troubleshooting and debugging. I suppose it's the Sherlock Holmes in me that likes to pour over minute details looking for clues and possibilities. I think a good troubleshooter has that quality in his nature - the thirst for knowledge and the desire for intellectual growth. I would say that's one of my strengths. That is not to say you can't be a good troubleshooter without those skills, but it helps if you really enjoy uncharted territory.
Listen Here
Radder Rad With Cfquery and Cut and Paste
When I first heard of RAD my immediate thought was the wonderful folks of Virginia and the Cumberland Gap - where I met my wife (a nurse from Minnesota, what are the odds). In the blue green mountains of Appalachia, everyone knows about Rad. It's the opposite of Blue. If you mix a little yeller into it you get arnge. When I started studying IT and Technology. It didn't take me long to learn that RAD stood for "Rapid Application Development". Now if you've been using Coldfusion for any length of time you will know that "RAD" is a word often used in to describe the usability and accessibility of the language. Here one reason why....
Listen Here
How to Build a Website in 4 Hours (without Elves)
If it hasn't happened to you already it will happen eventually. Someday soon, someone is going to ask for your help building a web site pro-bono. Now, I think this is a very good idea. If you are a member of a Church, a Scout leader, a band booster or involved in any other worthwhile cause that's long on commitment and short on funds, you should dedicate a part of your skills to helping them leverage the web. The problem is usually time. If you are like me you may have trouble coming up with enough time to build a web site "for free" - at least not the 30 or 40 hours you feel such an effort deserves. Not to worry... I'm here to tell you that with a couple of simple choices you can build an excellent web site in around 4 hours. What?? You don't believe me?
Listen Here
A Life Worth Living - New Years 2006
Like many people I pursue my carreer with enthusiasm. I'm proud of the small business I own and the fact that I employ a few hard-working people and I'm able to bless them with finances. I'm proud of my income. It makes me feel better somehow about myself - what I do. Some elements of my identity are wrapped up in my role as a developer and technologist. This is the seductive call of status. You can say it's wealth or power or advancement - but these are all synonyms for status. They are what our society uses as a gague to determine the importance of a man - at least in relation to other men.
Listen Here
Sites to Watch
Aggregators
RSS
