WebApp Sec mailing list archives
RE: ASP vs. ASP.NET
From: "Anil John" <Editor () SecureCoder com>
Date: Tue, 12 Oct 2004 20:13:29 -0400
You can write insecure code in pretty much any language and platform of your choice.. If you are focusing on writing secure web applications using ASP.NET, I would suggest that you check out the following resources: Building Secure ASP.NET Applications: Authentication, Authorization, and Secure Communication http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/ht ml/secnetlpMSDN.asp?frame=true Improving Web Application Security: Threats and Countermeasures http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/ht ml/ThreatCounter.asp Both provide specific and actionable ways to write secure ASP.NET applications. Regards, - Anil -------------------------------------------------------------- -- http://SecureCoder.com -- Architecture & Security in an Imperfect World -------------------------------------------------------------- -----Original Message----- From: Bénoni MARTIN [mailto:Benoni.MARTIN () libertis ga] Sent: Friday, October 08, 2004 4:06 AM To: webappsec () securityfocus com Subject: ASP vs. ASP.NET Hi list! I was wondering if if was a real lack of security developping nowadays in ASP instead of ASP.NET. According to some people, if everything is well written and the web server fully patched and uptodate, ASP is quite good. For others ASP.NET is really more powerfull than ASP and the latter is old-fashuined ... So what about you, MS users ? Thanks !
Current thread:
- ASP vs. ASP.NET Bénoni MARTIN (Oct 09)
- Re: ASP vs. ASP.NET Harrison Gladden (Oct 12)
- <Possible follow-ups>
- RE: ASP vs. ASP.NET Michael Howard (Oct 12)
- RE: ASP vs. ASP.NET Anil John (Oct 12)
- Re: ASP vs. ASP.NET exon (Oct 14)
- RE: ASP vs. ASP.NET Anil John (Oct 12)
- RE: ASP vs. ASP.NET Calderon, Juan Carlos (GE Commercial Finance, NonGE) (Oct 12)