Skip to main content

Posts

Showing posts from September, 2003

BaseLine Security Analyzer

Just came across this tool called Microsoft BaseLine Security Analyzer which scans the PCs of choice (either the local system) or the PC that you are intending to scan on the network. Of course, you must have privileges to scan the destination PC.
It scans the systems for SQLServer, Windows Security Updates etc. It further analyzes Window User Manager and gives you hint whether the passwords are strong and number of administrators for the system etc.

http://www.microsoft.com/technet/security/tools/Tools/MBSAhome.asp?frame=true

This would be a handy tool to keep the system secure, since the Slammer and similar viruses used the blank and weak passwords of the SA account. Is'nt it? Perhaps a definite tool that must be with any system administrator or helpdesk personnel. Perhaps common users intending to keep their PCs secure, if they want to test and keep thier PCs secure and for them it is really a valuable tool.

Personal Time Manager

How much time you have said 'I forgot', to any of your schedules? How much time you have got delayed? Perhaps here is a simple tool to keep yourself reminded of your schedules right over your desktop.  That too, without nagging you of your schedules and to remind yourself in most friendly ways.
Check out:http://www.turbonote.com/ Perhaps it a is Free Program too. Also the website says you can also send the setup program to your friends etc. The website itself supports 'Mail It' functionality of the Setup Application. Perhaps a nice and elegant tool to keep yourself reminded of schedules.

Protect yourself from W32.Swen.A@mm

A new virus/worm seems to be spreading W32.Swen.A@mm I just checked the Symantec URL and here are the details:
http://securityresponse.symantec.com/avcenter/venc/data/w32.swen.a@mm.html

Perhaps SpamPal is a savior in these cases with its HtmlModify Plugin since all bad attachments are renamed as plain text files that only Notepad can open. The worm seems be bit powerful, since it also deactivates Network Firewalls from being functional, as the Symantec WebPage claims. While SpamPal cordons off one way for the worm spreading (the 70% communication medium), the worm also seems to spread via Network shares. Perhaps care should be taken in exercising logon attempts at remote workstations using logon credentials with administrative privileges like accessing network shares using administrative shares, since if the system used to access administrative share is infected, then the worm may drop a copy of the same onto the target subsystem. I am not sure whether the worm does this, so if you hav…

Yukon -- New and Cute SQL Server

YUKON, the next version of SQL Server seems to be more promising. I just had came across this from a newsgroup and visited the Microsoft SQL Server homepage.:
http://www.microsoft.com/sql/evaluation/yukon.asp


Perhaps one of the features like using VB.NET or C# for the database applications, since CLR is now embedded in the database engine, it is taking the SQL Server far beyond all other databases in the world. That is a significant feature of Yukon.
Yukon -- You have become a sweetheart even before you release. See yourself how many WebLogs and Reviews that you have generated. We have become your foremost fans, waiting to welcome you.

LoveDotNet is now DotNetEmpire -- The little empire grows in mighty tender love

Our community workspace which was erstwhile known as LoveDotNet is now known as DotNetEmpire. Perhaps to start with, the in famous generic ADO connectivity tool called QueryExpress has been published for other users to download and use. 
Since any db-driven project needs a generic and robust tool to connect to datasource, the most latest and customized version our most revered QueryExpress has been checked into the SourceControl. Along with that, the WebServicesStudio application, another free download to manage and invoke WebMethods in any WebService has also been published.

Perhaps members can check out the files and start using them. If you would like to be a part of DotNetEmpire, why not consider visiting DotNetEmpire and applying for the membership in our team.  The membership in the group is entirely upto the moderators decision. So please try to convince why to join and perhaps your homepage or previous contribution to .net community would be helpful in getting the membership.…

Making effective use of BITS Windows Service

Windows XP and its successors have a Windows Service called Background Intelligent Transfer Service, shortly known as BITS. The purpose of this Windows Service is to make use of idle network bandwidth for making large transfers, instead of clogging the network and processor time, during effective user interactive session.
I was quite interested in knowing how to use this Windows Service. This will be of significant use while deploying Windows Forms since we can configure the Windows Forms application to automatically updates its data files from a preconfigured datasource. I was just searching for some nice resource, as I mentioned in the start of this paragraph. And just came across this one:

http://www.microsoft.com/downloads/details.aspx?FamilyId=874CDE91-E95F-47DF-9C75-778F63A4F5CF&displaylang=en


This has complete sourcecode on making large chunks of data transfer using BITS Windows Service.  The following URL also gives a complete description of the sourcecode:

http://msdn.micro…

Automated Builds in a typical .NET development

A typical .NET development involves regular builds taking latest versions from the respective SourceControl system. To ensure that each build is unique in itself and ensure cross verification of the same, when the build is made, a labelling of the same would be useful on the Source Control level. Perhaps this labelling concept is easy to describe and use as far as Microsoft Visual SourceSafe  is considered. 
Though there may be Build Managers in the Team, to assist in daily builds and sending reports to the team, it would be an effective way to have regular builds moved to an Automated Scheduled Task, so that the system itself would automatically take care of getting the latest versions of the files from the Source Control, make the build and generate appropriate reports. The advantage is that an automated tool ensures accuracy of the sequence of operations, as this would have gone through an exhaustive testing stage, removes monotony that is a bane with human interventions and operat…

Keeping mailbox SpamFree

The mailboxes getting swamped by junk messages these days is not an uncommon scene. We put our email addresses while registering or filling up the Contact Forms of so many websites. Spammers use more sophisticated email harvesting tools that catch these addresses, catalog them into database, perhaps regionwise, Countrywise etc and sell them on CDs too. Perhaps sometimes junk mails keep coming like 'Get CD of 1 Million Addresses'.
The email clients nowadays also come with MessageRules that aide us in filtering out unwanted mails. However, the amount of filtering capability is restricted to the Internet Headers and a limited set of previously stored details regarding the particular sender in question.  Fortunately, we have a few Internet Spam Prevention softwares too. The unfortunate thing is that not all are free and some are bulky and some are too tedious to configure.

Of late, I came across a free software called SpamPal, a free Spam Detection software from http://www.spampal…

Dangers Lurking for Innocent Websites Due to Cross Site Scripting

Often this Cross Site Scripting has been talked during some site updates and been forgotten. Perhaps if you have installed .NET Framework 1.1, then Scripting and HTML tags via QueryStrings or HTML form tags are just stopped by the framework with the message similar to the following one: A potentially dangerous Request.QueryString value was detected from the client (DocLinkUrl_Begin="javascript:window.opener...").Description: Request Validation has detected a potentially dangerous client input value, and processing of the request has been aborted. This value may indicate an attempt to compromise the security of your application, such as a cross-site scripting attack. You can disable request validation by setting validateRequest=false in the Page directive or in the configuration section. However, it is strongly recommended that your application explicitly check all inputs in this case.


Exception Details: System.Web.HttpRequestValidationException: A potentially dangerous Reques…

Updates to my WebKennel (Personal Homepage Network)

There has been significant updates to the WebKennel Personal Website today. Of late, if you have observed the website for the past three days, you should have been experiencing problems with certain links were not able to navigate fast, since the Scripting itself was designed for an earlier version of Zend Engine.
Thanks to Portland Communications, since now NetCraft WebServer Survey shows that Portland Servers run with the current version of PHP, which has faster Zend Engine rendering. Perhaps, features like register_globals being turned off, add an extra Security Feature to the website, like preventing the infamous Cross Site Scripting attacks.

WebKennel prepares to welcome you, with more love and affection...

Welcome to WebKennel!

Online Books @Vijay Mukhi's Technology Cornucopia

Just came across this website http://www.vijaymukhi.com/. Perhaps most of us know Vijay Mukhi, who has been the most popular author of Books on C++ etc. The site has really exhaustive collection of documentation and online tutorials on ASP.NET, ASP, VB.NET, C#, C# and MSIL. The website also covers J2EE topics like J2EE on Mobile etc.
Perhaps you can bookmark this site and visit it often as your reference.

The more elegant and cool feature of this website is the simple and easier to navigate Tree Navigation System, which facilitates quicker access to any of the pages, that we intend to reach.

I can also observe a couple of Sample Projects (with sourcecode).

A surestop reference to all sections of developers, whether J2EE or Microsoft Technology (start or advanced).

CodeReview -- Now along with Visual Studio .NET

A CodeReview Phase always is not that welcome step among developers. Most of us do not want to have faults to be found at us. Is'nt it? But there is a gentle way of indicating faults, so that we can take corrective actions and make our programs more user-friendly (developer-friendly). 
Check out the following URL for a friendly CodeReview Checklist that should be helpful, even from during the development stage. The website also gives a 30 day Trial Edition of the CodeReview AddIn, but not many of us can afford it, to be frank.

http://www.macadamian.com/codereview.htm

There are simple Compiler options that can also make us enforce some discipline like Compiling under 'Type 4 Warning Level'  and 'Treat Warnings As Errors'. A Warning is just not a warning. The dumb and innocent compiler is really helping us to smell something wrong or out of normal sequence. Hence it would be wiser, to have the warnings corrected too.

Perhaps these are simple and trivial things. But in…

Help Networks

Searching for manuals or help information? Perhaps the following site has lots of information on the same, under diversified category set.
http://www.geocities.com/crmail2000/

But if you want to know some technology and how it works, without delving into details, perhaps HowStuffWorks™  should be able to help you. Check out HowStuffWorks™ at:

http://www.howstuffworks.com/

The Definitive COM and ActiveX Reference

Are you searching for in-depth COM and ActiveX fundamentals references? Perhaps the following URL would be helpful to you:

http://www.opengroup.org/onlinepubs/009899899/


The pages are fast, since they don't have advertisements or shockwave or flash movies. It has quite indepth coverage. Perhaps while reading, it may be like reading the Control Systems Book, during the fifth Semester of Computer Science and Engineering degree course. Perhaps you can bookmark this URL and keep for your COM and ActiveX references.

AccuFlow -- Document Management Solution

AccuFlow -- Document Management Solution


I was just searching for some tool that uses Microsoft Indexing Service API in our programs and got hold of this FREE Tool. I just downloaded this code and am trying to understand the same.  This product has similar look and feel to MSN Hotmail Tab Panel, so naturally, I think, Ease of User Interface should'nt be a problem to the normal user. I have'nt done much of changes to my system other than unpacking the downloaded file and WebSharing the folder.


The URL is: http://www.fulcrumweb.com/accuflow.shtmlIt uses Microsoft SQL Server. I think that should'nt be a problem though. Microsoft Desktop Edition, which is freely downloadable from http://www.asp.net/ along with WebMatrix should answer this step.


So what are you waiting for.... MSDE and AccuFlow are waiting for you... :) :)

Get Saved from Blaster Worm

Get Saved from Blaster WormThe BlasterWorm that exploits certain API of DCOM in Windows seems to be very devastating. I can personally observe more than dozens of my close friends complaining of thier Windows systems being infected. I just made a small research on Blaster Worm and thought the following article would help in saving ourselves from the BlasterWorm menace. Check out this step-by-step link from Microsoft: What You Should Know About the Blaster Worm and Its Variants

I would suggest the following tools too, which are from the freeware (for personal/home use) domain, which can help you get saved from BlasterWorm menace.

Kerio Personal Firewall

Kerio Personal Firewall is quite easy to install and configure, according to what I have observed. Since it sits near the TCP layer, it catches almost all packets that sniffs in or tries to sneak out of Windows and barks at bad packets and warns the user that some packets are going crazy. The help pages are also very informative.

Perhap…

Crystal Reports under .NET

VB Developers should be more familiar in interacting with Crystal Reports right? Crystal Reports had been the choicest Reporting Tool for many enterprises worldwide. Starting VB.NET and C#, with its most feature-rich Windows Forms, Crystal Reports for .NET again, no doubt, becomes the choice of most enterprises. 
Here is a simple Tutorial URL, that helps a novice developer in Crystal Reports for .NET to walk through the same.

http://www.crystalreportsbook.com/

The pages are plain-vanilla and load almost fast, since there are'nt much graphics, flash or shockwave movies to slow down the pages. The language is pretty simple too.  Perhaps starting crystal reports developers would be benefitted by this tutorial.