/5957.asp
[Blog] http://blogs.msdn.com/michael_howard
[SDL] http://msdn.microsoft.com/security/sdl
-Original Message-
From: Christopher Canova [mailto:[EMAIL PROTECTED]
Sent: Wednesday, July 20, 2005 10:55 AM
To: John Steven
Cc: [EMAIL PROTECTED]; sc-l@securecoding.org
Subject: Re: [SC-L
http://msdn.microsoft.com/security/
Heh. They want us to do their code review for them?
Did you look at it?
I looked at the referred-to blog. I didn't see any code, though I
didn't do much webcrawling looking for any - perhaps I was too early,
or perhaps I just missed the crucial link, or
Christopher Canova [EMAIL PROTECTED] wrote:
It seems to me that they may be shifting from a
Deploy-first-ask-questions-later tactic to a
Code-it-right-before-its-out-the-door.
They always did code it right before it's out the door. It's just a
question of where you put the comma. ;-
At 9:55 AM -0400 7/19/05, Mark Curphey wrote:
If you fancy yourself as a good code reviewer you can play spot the bug at
MSDN. They will be getting harder !
http://msdn.microsoft.com/security/
The overarching bug seems to be the assertion that there is only one bug,
since those offering comments