This month’s Los Angeles Area .NET Developers meeting’s speaker was no-intro-required Jeff Prosise, the renowned author and speaker among Microsoft circles and beyond. Topic of his presentation was “HACKED! How evil people attack ASP.NET web sites, and what you can do about it”. The presentation was similar to DevDays security track presentation I attended in April and a roundup was published on 15seconds. The difference would be more of the speaker as it’s more like Chris Rolon vs. Jeff Prosise presentations, both are very good. Jeff is a confident and educated speaker. He brought up various good points and his presentation was excellent, audience liked it and I personally found it a good learning experience. His approach was methodical and bullet point oriented; modelling the attack, Security method evaluation, implementing the solution, measuring tradeoffs etc He explained the xp_cmdshell vulnerabilities and cross site scripting in a broader and more organised context with examples of automated tools and companies he has worked with.
This was LA.NET user’s group largest meeting with around 100 people and like last time, I didn’t get to win any free cool goodies! UCLA Gonda Hall Room 1357 wasn’t big enough to fit was all and some of us were standing at the back, but since I didn’t complain at that time, it seems like presentation was quite engrossing! We are looking forward to attend more of your presentations Jeff, thanks for your time.
