Microsoft Security (...how to reassure customers of)

• Previous message: Eric McCarty: "RE: Encrypt data - SQL Server 2000"
• In reply to: Lawrence Brownlee: "RE: About MS-Networking security."
• Next in thread: Paul Navarre: "RE: Microsoft Security (...how to reassure customers of)"
• Reply: Paul Navarre: "RE: Microsoft Security (...how to reassure customers of)"
• Reply: Gary Rollie: "RE: Microsoft Security (...how to reassure customers of)"
• Maybe reply: ajq_at_comcast.net: "RE: Microsoft Security (...how to reassure customers of)"
• Maybe reply: Botwick, Jason (GEI, MORT, Contractor): "RE: Microsoft Security (...how to reassure customers of)"
• Reply: Harlan Carvey: "Re: Microsoft Security (...how to reassure customers of)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <focus-ms@securityfocus.com>
Date: Thu, 22 Jan 2004 10:57:45 -0600

My company focuses on web design (portal/CMS) for small/midsize companies
and non profit orgs. We generally design with ASP.NET/WIN 2003 Server/MS
SQL Server.

We have recently run into a problem with a local competitor. The competitor
generally designs flash and php sites hosted on Apache/Linux.

The competitor is apparently going to our customers and potential customers
and trying to scare them off by bashing Microsoft/IIS.

Security Holes in improperly configured MS systems are no secret... so
people already have this idea in their head /before/ this competitor gets to
them.

It's like the competitor is playing off of the customers fear... and once
they are afraid, it appears the burden of proof lies on us.

I'm looking for suggestions and/or resources on how to counter this. If you
or any of your companies have run into similar situations, I'd love to hear
how you handled it.

---------------------------------------------------------------------------
---------------------------------------------------------------------------

• Previous message: Eric McCarty: "RE: Encrypt data - SQL Server 2000"
• In reply to: Lawrence Brownlee: "RE: About MS-Networking security."
• Next in thread: Paul Navarre: "RE: Microsoft Security (...how to reassure customers of)"
• Reply: Paul Navarre: "RE: Microsoft Security (...how to reassure customers of)"
• Reply: Gary Rollie: "RE: Microsoft Security (...how to reassure customers of)"
• Maybe reply: ajq_at_comcast.net: "RE: Microsoft Security (...how to reassure customers of)"
• Maybe reply: Botwick, Jason (GEI, MORT, Contractor): "RE: Microsoft Security (...how to reassure customers of)"
• Reply: Harlan Carvey: "Re: Microsoft Security (...how to reassure customers of)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: How to handle concurrency issue with better performance? ... Hitchhiker's Guide to Visual Studio and SQL Server ... Then for timestamp, it will be unique? ... Collisions occur because your design permits ... select command). ... (microsoft.public.dotnet.framework.adonet) Re: ORDER BY in VIEW not working ... As an object-oriented programmer, I expect to be able to encapsulate ... The relevant design principle is that of Orthogonal Design. ... State what version of SQL Server you are using and specify the content ... (comp.databases.ms-sqlserver) Re: Target number of database reads per user ... Yeah, just to echo what Andy is saying, if you want to have the question ... If you can post code/database design we could all take a look. ... Pro SQL Server 2000 Database Design - ... (microsoft.public.sqlserver.programming) Re: Access Form connected to SQL table in Access Data Project (.adp file) ... Under the previous design, he would just open the form and could ... navigate through the last few orders by clicking "next record" a few times. ... > the form what records it should load. ... we are NOT even using sql server yet. ... (microsoft.public.access.conversion) Re: Database design question ... Pro SQL Server 2000 Database Design ... Please reply to the newsgroups only unless you are ... (microsoft.public.sqlserver.programming)