Bryan Sullivan has just published Incorrect configuration can open Web sites to application security attacks the second
half of Debugging Application Security Vulnerabilities in Web.config Files.
I’ve worked with Bryan
at SPI Dynamics and he’s a really sharp guy. As a matter of fact I’m
helping to peer review an ajax security book he is co authoring
for Addison Wesley. Good stuff.
Article Link: http://www.securitypark.co.uk/article.asp?articleid=27000&CategoryID=1
