securityguidancefeedback

Feedback Page for patterns & practices Security Guidance

This page is for feedback for patterns & practices Security Guidance.
To provide general comments and feedback, use:
* SecurityGuidanceGeneralFeedback

To provide guidance on a specific deliverable, use the corresponding link below:
* Building Secure ASP.NET Applications
* Improving Web Application Security
* Threat Modeling Web Applications

Key points:
* To write your feedback in this Wiki, you need to login to Channel9.
* For an example of feedback within a Wiki page, see http://c2.com/cgi/wiki?UmlDiagram

Return to Channel9 HomePage

Baby Furniture

koffka

This page helped me out a lot. There is one thing I think needs to be corrected in the Common Regular Expressions - URL section...an equals sign is needed inthe part of the reg exp that corresponds to the URL query string.

^(ht|f)tp(s?)\:\/\/[0-9a-zA-Z]([-.\w]*[0-9a-zA-Z])*(:(0-9)*)*(\/?)([a-zA-Z0-9\-\.\?\,\'\/\\\+&%\$#_=]*)?$

Thanks again!

richardmoodie

Interested parties investigating the use of security but don’t know how well it would work for their deployment scenarios and constraints.

( Accounting Dissertation , University Dissertation and Graduate Dissertation )

richardmoodie

The security guidance is packaged as a series of modules. This modular approach to guidance ensures that each document has high context precision. This means that when you have a specific problem, you will find specific guidance that will give you the steps to work through the problem to a successful conclusion. This also means that each module can stand alone or be placed together into a larger whole and that you can use multiple entry-points to get to the guidance you need. ( Economics Essay and Technology Essay )

asope123

In reply to koffka

#May 21st, 2009 @ 9:11 AM

The security guidance showed by you is informative and i did learn much from it.

Regards,

free online games

platwe

I found that page very helpful, thank you so much - Smiley

BTW, koffka you right!

If you have any spare time go play free games here.

PapillonUK

In reply to hueyloo

#May 28th, 2009 @ 7:58 AM

SPAM

PapillonUK

In reply to platwe

#Jun 16th, 2009 @ 10:57 PM

MORE SPAM

amelen

Works for me. Thanks!

Free Web Hosting

Tarwn

Example table of regular expressions contains a mis-type or error:

ZIP Code

^(\d{5}-\d{4}|\d{5}|\d{9})$|^([a-zA-Z]\d[a-zA-Z] \d[a-zA-Z]\d)$

12345

Validates a U.S. ZIP Code. The code must consist of 5 or 9 numeric characters.

I believe the regular expression used here is intended to be a double check for either a US ZIP code OR a broad check for a Canadian Postal Code (broad because it allows some incorrect cases). The wording implies that this is only a US Zip Code check and that may confuse a beginner.