Welcome to MSDN Blogs Sign in | Join | Help

February 2004 - Posts

Sunday, February 29, 2004 4:11 AM

The Amazing Disappearing Templates Act

As reported in the VSTO Newsgroup (can't...find...link) and on Julie's blog , if you try and access ThisApplication.Templates.Count from VSTO, you end up with only one (Normal.dot) instead of the n (where n > 1) entries you were expecting. I finally
Posted by ptorr | 0 Comments
Filed under:
Friday, February 27, 2004 6:54 PM

Andrew Whitechapel's blog

Laugh-a-minute Andrew Whitechapel has started a blog at http://blogs.officezealot.com/whitechapel/ Andrew (like the other Andrew ) hails from the UK, and even though he likes the Pet Shop Boys he promises to try very hard not to mention them. He should,
Posted by ptorr | 1 Comments
Filed under: ,
Friday, February 27, 2004 6:40 PM

New WinZip vulnerability

As if you weren't already paranoid enough about ZIP files... The recent MyDoom virus required you to open a ZIP and then execute one of the files inside the attachment. But a new vulnerability announced by iDEFENSE allows arbitrary code execution just
Posted by ptorr | 8 Comments
Filed under:
Monday, February 23, 2004 3:26 PM

New VSTO 2 blog

A new blog for the VSTO 2.0 product has been started at http://weblogs.asp.net/vsto2 I was too busy working this weekend to blog, but I have some things in the pipe. Maybe I'll get around to doing them this week. In the words of Ahnold, I need a vacation
Posted by ptorr | 0 Comments
Filed under:
Thursday, February 19, 2004 6:25 AM

A new name for Windows?

In unrelated news, we were joking about silly words at dinner. One of our developers said he hated the word "performant" and that Microsoft was the only place where you would hear it (clearly he is mistaken ). Of course I said I didn't like "so" and "like",
Posted by ptorr | 6 Comments
Filed under:
Sunday, February 15, 2004 7:16 AM

Good discussion of code auditing

Dana has another great blog about auditing code in open and closed environments. Along with the "many eyes" fallacy used for open source development, I'd also like to see someone with more time on their hands than me tackle the equally fallacious "OSS
Posted by ptorr | 5 Comments
Filed under:
Sunday, February 15, 2004 5:35 AM

Romance in Movies

So today is "Let's-Make-All-The-Single-People-Feel-Bad-About-Themselves Day," but I'm not about to get upset over a simple chemical imbalance (courtesy of Slashdot ). An interesting thought: People get upset about violence in film and how it supposedly
Posted by ptorr | 1 Comments
Filed under: ,
Sunday, February 15, 2004 5:26 AM

GetObject and LinkDemands

A few weeks ago I posted a blog entry about a security problem we found with JScript .NET's GetObject method before the initial release of the CLR. Talking about the problem in full would take a while, and I want to get through a few blogs today, so some
Posted by ptorr | 3 Comments
Filed under: ,
Saturday, February 14, 2004 5:26 AM

Things to come

Just a quick post to say that I do intend to follow up on the GetObject post and the Five Phases of Security series . I also have about a half-dozen other blogs I want to write... maybe some of that will happen this weekend, but next week will be pretty
Posted by ptorr | 0 Comments
Filed under:
Wednesday, February 11, 2004 5:24 AM

A ridiculous "security" tool

Reading Bugtraq today I saw this message about a "vulnerability" in Windows. Apparently -- get this -- if someone has the ability to install arbitrary system software on your computer, they can replace the SLL library used by IE and log all your internet
Posted by ptorr | 8 Comments
Filed under: ,
Saturday, February 07, 2004 11:06 PM

Why you can't catch some exceptions

If you've been using .NET (or any previous exception-based languages like JScript or C++) for a while then you are probably used to doing something like this: try { someObject . MethodThatMightFail () } catch ( ex ) { print ( "uh, something went wrong"
Posted by ptorr | 4 Comments
Filed under:
Thursday, February 05, 2004 6:10 AM

Don't use ApplicationClass (unless you have to)

A comment on Mike Howard's blog exhibits a common problem that I see time and time again: developers are creating instances of Word.ApplicationClass or Excel.ApplicationClass in their projects. Even though it's the wrong thing to do, I don't blame them
Posted by ptorr | 15 Comments
Filed under:
Monday, February 02, 2004 6:31 PM

IE patch and other stuff

It's time to go to Windows Update to get the latest IE updates, including the %01 bug address bar bug. In other news, Dana has a blog entry about the WSH security settings . Jeroen has an interesting blog about building a JVM on .NET . The X5 machine
Posted by ptorr | 4 Comments
Filed under: , ,
 
Page view tracker