Friday, October 13, 2006

Software Security Sucks


The reason software security sucks is because as a developer/architect/user, they mean different things to each one. As a developer, it's a pain to implement it. As an Architect, it's a pain to define it. As a user, I don't really give two cents unless it prevents me from doing my job.



Now, I guess I should back down from post title. But it's true. Developing and designing applications with security in mind is a very daunting task. In my opinion, and of course, it's all mine, web applications seem to provide the biggest scare to employers and users. Desktop application for some reason gives everyone a sense of security. Could it be that it's primarily self contained?



There have been hundreds of white papers, blog posts and books written about software security. A company I worked for not long ago, which sells security software, had two security experts on staff. Guys who all they do is help define the security concerns for the architecture of the software.



[just had a thought about testing and security, next post]



I know this, in the end, when it comes right down to it, most companies will bend and forgo any security in software, especially if their current development staff doesn't understand the necessity of security. Sure they may learn some, but it will be weak at best.



OK, I admit it. I'm one of those guys. As I was looking at a project I'm working on today, I was a little stumped as to where the security holes were. Or were there even any? As the leader of an enormous one man operation, I should know this stuff. So, I set off to learn more about the security of software development.




read more...

Yes, Office 2.0 is for me

I wanted to jump in on this discussion, mainly because I am very passionate about these Web 2.0 apps.

Honestly, I don't care if they are aptly named "Web 2.0", or Web 3.0 or Webbies or what ever. What I do care about is they are accessible from pretty much anywhere I can get an Internet connection.

As I posted here, I'm really open to these applications. As stated in Chris's post (here), not everyone needs every feature of a wordprocessor like Microsoft Word. In fact, I don't even need all the features in a Google Docs. But I like the interface, the ability to use several document formats, and I'm sure as Google goes along, it will get better. And I'm willing to look past it.

I don't think any of these applications are ready for full Enterprise deployments, nor do I think they were intended as such. As an Enterprise user, I would feel very frustrated knowing that I must be connected to the Internet to use my wordprocessor or spreadsheet. But if you don't care or need to, then yeah, these Web 2.0 apps are fantastic.

read more...

October Breast Cancer Awareness



I added a cool little badge to the right that links to the National Breast Cancer Awareness site. Please take a moment and visit the site to learn more about this disease.

Over the past several years I have lost several members of my family to cancer. It's a devastating disease. It affects more than the person who's sick. Recently a good friend of mine lost a brother to cancer. When I called to convey my condolences, I asked what I could do for him and his Family. His answer... make people aware of cancer, and do all you can to help find a cure. That's all I want. I don't want another family to go though what we have.

I agree. So, I am doing my part to try and help find a cure for something that is so devastating.

I also want to recognize that several of my Family members are stricken with Multiple Sclerosis. This is an equally debilitating and deadly disease.

Please consider donating to any charity that is dedicated to fighting and finding a cure for these deadly diseases.

Image from Sarah Ballard
read more...

Thursday, October 12, 2006

Tracking my development time

I know there are probably a thousand utilities to track timed events. In the case where I need to track how much time I spend working on a clients project, I found a great little application called TimeLeft. Why do I like it? It's small. I can keep it running on the top of my windows and it doesn't get in the way. I can take a quick glance and see where I'm at. I can quickly pause, or all together stop. Again, there a probably a thousand different utilities I could have used, but this one really fits my needs. Thought I would share. 

read more...

Monday, October 9, 2006

WriteToMyBlog, easy and works great

I have been using WriteToMyBlog the last couple of days. It's a great little app, web based, supports several blogging API's. Here are a couple of my quick assessments:

1. It seems to have a lot of

read more...
 
Copyright © 2003 - 2014 Thom Allen Weblog • All Rights Reserved.