Can you Spot the Bug?

Microsoft Product Manager for Developer Security Rick Samona, with the help of Foundstone, has created a new feature for the Security Developer Center called Spot the Bug. The way this works is that Rick will post a new bug in his blog every so often and you can take a shot at guessing the bug in the comments for the entry. When Rick posts a new bug, he'll answer the question on the current bug and mark the bug squashed. We've rebuilt the home page on the Security Developer Center to feature the latest unanswered bug and link to the squashed bugs.

This is a total experiment, and it could fail miserably, but it seems cool right now. :)

You might notice that I took the Security Bulletins list off the home page and replaced it with a link to the Security Bulletin Search page. Let me know if you were relying on that feature or not and I'll bring it back if there's a popular demand. Thanks to Erica Wiechers for helping us get this posted.

Comments

• Anonymous
  July 19, 2005
  This is very cool. I think this sort of pragmatic education in small bite-size pieces will both keep me entertained and learn something valuable. Will you be having managed code examples as well ?
• Anonymous
  July 19, 2005
  I too started similar blog a long back.
  Check http://secureprogramming.blogspot.com
  
  I didnt get enough time to update it.
  
• Anonymous
  July 19, 2005
  Robert,
  
  I'll ask Rick about the managed examples. He's having these done by Foundstone, so we'll see what they come up with.
  
  Sandeep,
  
  Very cool. :) I've found a few of these since we put this up. :)
  
  Cheers,
  
  Brian
• Anonymous
  July 19, 2005
  Robert - Yes, I'll be posting managed code bugs as well. The next bug I through up there will be a bit more challenging. :-)