In the document about ASP.NET security that Roy have linked, I've found a very interesting row...
- The HttpOnly cookie option is used for defense in depth to help prevent cross-site scripting. (This applies to Internet Explorer 6.1 or later.)
What's happening here? A new version of IE? A typo? Who knows...
On September, 17th I've attended my first UGIdotNET workshop, hosted by Microsoft Italia.
It was a very interesting day, with a lot of interesting talks:
- The Agile Way (Marco Abis) - it was an interesting introduction to the Agile Movement and the Agile Manifesto, along with a brief description of some of the Agile methodologies, and in particular eXtreme Programming
- eXtreme .NET (by Omid Ehsani) - how to apply eXtreme Programming practices in .NET, and in particular the use of NUnit 2.x to do the unit testing
- Creating new datatypes in C#: Nullable Types (by Luca Minudel) - how to create new datatypes in C#, and in particular how the Nullable Types were created
- How to handle the serial port under .NET (by Corrado Cavalli) - it started as a presentation on his great serial port class for .NET, but ended as a very nice talk about P/Invoke
- Creating a Visual Studio .NET Add-In (by Pierre Greborio) - how to create a strongly typed collection generator add-in for VS.NET, using the add-in wizard and especially the CodeDOM
It was a very nice day, I met a lot of interesting people and had a very great time.
On September, 16th I've passed the latest exam on the road to the MCSD.NET cert.
It was the 70-229 SQL Server 2000 Design.
A very good exam, it forced me to improve my knowledge on some parts of T-SQL that I never thought about.
Now I can be an MCT for another year...
I liked very much that they've re-introduced the score at the end of the exam, so one can know if there are areas to improve.