Peter Torr's Blog
Posts about Windows [Phone] application development. And other stuff.
Why does Outlook have an OM?
This one could be controversial ;-) In a recent comment, Edd James (note to Edd: that link gives a...
Author: Peter Torr - MSFT Date: 04/16/2004
Clear Plastic Cups at SEATAC
This is about airport security, not code security ;-) Raymond has a blog today about airport...
Author: Peter Torr - MSFT Date: 04/16/2004
Top 5 List
Julie is looking for input on a Top 5 Good / Bad Things about VSTO list over on her blog. If you...
Author: Peter Torr - MSFT Date: 04/16/2004
Windows Update Day
It's the second Tuesday of the month... That means it is time to go to...
Author: Peter Torr - MSFT Date: 04/13/2004
Installing software
Jeff, I promise this one will be short! And any MacOS fans reading, I am not dissing your OS! I am...
Author: Peter Torr - MSFT Date: 04/13/2004
Leaking names
A short blog tonight. There are many pieces of information that can be useful to an attacker when...
Author: Peter Torr - MSFT Date: 03/30/2004
Crash
The other day I wrote about Burnout. Well there’s a cool kind-of related video up on the new...
Author: Peter Torr - MSFT Date: 03/25/2004
Developing as Non-Admin
Keith Brown writes a comment in one of my older posts about a chapter in his book dealing with...
Author: Peter Torr - MSFT Date: 03/21/2004
Balancing Security and Usability
I'm often tempted to write about viruses and what I think the next "innovation" might be, but then I...
Author: Peter Torr - MSFT Date: 03/20/2004
I want my Burnout 3
This post has nothing to do with code or security. Move along ;-) One of my current favourite XBox...
Author: Peter Torr - MSFT Date: 03/14/2004
The horse has already bolted
A while ago (yes, I'm very slow) Ivan had a couple of blogs about removing the ability to turn off...
Author: Peter Torr - MSFT Date: 03/06/2004
Andrew Whitechapel's blog
Laugh-a-minute Andrew Whitechapel has started a blog at https://blogs.officezealot.com/whitechapel/...
Author: Peter Torr - MSFT Date: 02/27/2004
New WinZip vulnerability
As if you weren't already paranoid enough about ZIP files... The recent MyDoom virus required you to...
Author: Peter Torr - MSFT Date: 02/27/2004
New VSTO 2 blog
A new blog for the VSTO 2.0 product has been started at https://weblogs.asp.net/vsto2I was too busy...
Author: Peter Torr - MSFT Date: 02/23/2004
A new name for Windows?
In unrelated news, we were joking about silly words at dinner. One of our developers said he hated...
Author: Peter Torr - MSFT Date: 02/19/2004
Good discussion of code auditing
Dana has another great blog about auditing code in open and closed environments. Along with the...
Author: Peter Torr - MSFT Date: 02/15/2004
Romance in Movies
So today is "Let's-Make-All-The-Single-People-Feel-Bad-About-Themselves Day," but I'm not about to...
Author: Peter Torr - MSFT Date: 02/15/2004
GetObject and LinkDemands
A few weeks ago I posted a blog entry about a security problem we found with JScript .NET's...
Author: Peter Torr - MSFT Date: 02/15/2004
Things to come
Just a quick post to say that I do intend to follow up on the GetObject post and the Five Phases of...
Author: Peter Torr - MSFT Date: 02/14/2004
A ridiculous "security" tool
Reading Bugtraq today I saw this message about a "vulnerability" in Windows. Apparently -- get this...
Author: Peter Torr - MSFT Date: 02/11/2004
Why you can't catch some exceptions
If you've been using .NET (or any previous exception-based languages like JScript or C++) for a...
Author: Peter Torr - MSFT Date: 02/07/2004
IE patch and other stuff
It's time to go to Windows Update to get the latest IE updates, including the %01 bug address bar...
Author: Peter Torr - MSFT Date: 02/02/2004
Where VSTO creates the project folder
Julie wrote to me with a problem about where VSTO creates its DLLs and how they get trusted....
Author: Peter Torr - MSFT Date: 01/31/2004
MyDoom and VSTO
I've blogged a lot about the VSTO security model, and many customers have been frustrated / confused...
Author: Peter Torr - MSFT Date: 01/31/2004
Gandalf is Dracula!
Many of you probably know that Sir Ian McKellen played both Gandalf in The Lord of the Rings and...
Author: Peter Torr - MSFT Date: 01/31/2004
Hacking IE Security Zones
Warning : This entry contains information about editing the registry. Editing the registry could...
Author: Peter Torr - MSFT Date: 01/29/2004
Using referenced assemblies in VSTO
OK, a quick one to finish up. When you add a reference to a "private" (non-GACed) assembly to a VSTO...
Author: Peter Torr - MSFT Date: 01/28/2004
Francis Francis! X5 and ESE pods
Warning: this entry has nothing to do with code. As I blogged earlier (I think!) I have a rather...
Author: Peter Torr - MSFT Date: 01/28/2004
Not calling your parent constructor
Earlier today, JArnold wrote a blog entry that looked at an instance-based constructor hack that is...
Author: Peter Torr - MSFT Date: 01/28/2004
Beware of AutoSave and DocumentBeforeSave
One of the cool things about Word is that it auto-saves your work so that if the machine dies or the...
Author: Peter Torr - MSFT Date: 01/28/2004
Calling class constructors twice
Yesterday I blogged about a bug that you could exploit in JScript .NET, and the other day I made a...
Author: Peter Torr - MSFT Date: 01/27/2004
GetObject and Security
Eric has recently done a series on script security, and one of the things he very briefly mentions...
Author: Peter Torr - MSFT Date: 01/26/2004
Clinick's Clinic is back!
My "old" boss (he hates it when I say that <g>) Andrew Clinick has started blogging. He'll be...
Author: Peter Torr - MSFT Date: 01/20/2004
Now I've seen it all
The new Bagel Virus takes the cake. (Update: Also known as Beagle, Bagle, etc.) It comes as an EXE...
Author: Peter Torr - MSFT Date: 01/19/2004
SD Times mentions VSTO security
There's an article about VSTO at SD Times. One of the things they point out is that VSTO is the...
Author: Peter Torr - MSFT Date: 01/18/2004
You know you're a PM when...
...you see a drive-through espresso stand and ask yourself "I wonder if they support the 'walk-in'...
Author: Peter Torr - MSFT Date: 01/15/2004
Security and Inheritance
I received an e-mail from a customer referencing this newsgroup post and asking two questions about...
Author: Peter Torr - MSFT Date: 01/15/2004
8 Rules of Security
An interesting post by Dana Epp via Robert Scoble via Owen Allen. Apologies if this is a dupe for...
Author: Peter Torr - MSFT Date: 01/12/2004
Word Shortcuts
Ever wanted to move some text around in a Word document, but didn't want to go through the hassles...
Author: Peter Torr - MSFT Date: 01/11/2004
Five phases of security
This will hopefully start a mini-series on some thoughts around security. I don't know if they'll be...
Author: Peter Torr - MSFT Date: 01/11/2004
Always making the wrong decision
Paul Stubbs and I both work on the Visual Studio Tools for Office team at Microsoft. Other bloggers...
Author: Peter Torr - MSFT Date: 01/11/2004