Tag Archives: security

Guerrilla Threat Modelling (or ‘Threat Modeling’)

An interesting read on Guerrilla Threat Modelling (or ‘Threat Modeling’ if you’re American) by Peter Torr. This is a relatively old post, but still applies today. In addition, a good practice to implementing threat countermeasures is the STRIDE approach which is described … Continue reading

Posted in .NET Development, Software Engineering | Tagged , | Leave a comment

Daniel Larson’s Best Practices for Elevated Privilege in SharePoint

[via Daniel Larson] Daniel Larson, a MOSS MVP, has been ranting over the past few days about the use of the SPSecurity.RunWithElevatedPrivileges method. While I have been amused with his rants, I share his concerns and frustrations as a result of … Continue reading

Posted in Sharepoint Server, Windows Sharepoint Services | Tagged , , , , , , | Leave a comment