The idiosyncrasies of America

Sometimes living in the States can blind you, even for the well traveled.  You forget the luxuries and accommodations that this country provides and you don’t even realize the unique idiosyncrasies of the country.  Tim Sneath, who recently relocated to Redmond, provides some insightful and entertaining commentary about life in the States (part…



What the heck?


testing? Yea we do a lot of that

Testing software at Microsoft is very important.  Delivering high quality products is the cornerstone of the Web Platform and Tools team.  Don’t believe me?  Well Scott Guthrie does an amazing job of describing what testing is all about for us and what our stellar team of SDE/T’s do with their time.


A look inside ASP.NET product management

Scott Guthrie posted a very interesting post giving great insight into what is going on inside the corridors of the Web Platform and Tools product team – it really is quite amazing the size, scope, and rigor that goes into building a product as complex as ASP.NET and Visual Web Developer.  Reading that spurred me…


A look into the ASP.NET 2.0 window

Scott posted an excellent explanation of what is going on exactly with the team right now — ever wanted an in-depth look at how the end-game works at Microsoft?  Take a look here


Improving Copy Web in Visual Web Developer

I’ve spent a lot of time in the last week evaluating the Copy Web experience inside Visual Web Developer.  When using it, I ran into some confusion and I wanted to see what your opinons were.  If you have used Copy Web, let me know your thoughts. What do you expect this feature to actually…


Making the ValidatePath HTTP Module easier to deploy

We have been working very hard to make it as easy as possible for customers to respond to the reported ASP.NET security issue. The first steps were to quickly provide guidance for Web site administrators and developers to help protect their apps.  Since then, we have been trying to make it even easier to manage…


Updated info on the reported ASP.NET vulnerability

Today we posted updated information to with additional information about the nature of the reported vulnerability and an additional mitigation best practice.  Our additional guidance is an HTTP Module that you can install onto a server that will mitigate all ASP.NET applications on the box and protect them against canonicalization issues we knew about…


What You Should Know About a Reported Vulnerability in Microsoft ASP.NET

Tonight we posted a bunch of information about a reported ASP.NET security vulnerability.  I urge you to take a look at the security incident page at: That page has all the latest info and will continually be updated as new information becomes available.  You can also get in depth information on how to help…