This short video clip demonstrates how to create an Azure Storage Account and upload a index.html file.
List of mistakes on Security aspects which developers usually make
Below are some common mistakes developers make while development. Most of the mistakes will not impact the functionality of the application so tendency is to make the mistake subconsciously. Security should be by design and it is not something we should incorporate after the development.
OWASP guidelines should be taken as high priority in addition to this list.
- Writing sensitive information such as passwords in the paper or sticky notes
- Sharing credentials between team members
- Hard-coding sensitive information as plain text, including passwords in the application in configuration files, databases and comments
- Not encrypting the database
- Use of untrusted code from public internet forums without proper reviews and corrections
- Not encrypting the communication channels such as API
- Not following the principle of least privileges
- Opening server ports to public
- Not enforcing password policies (strong password, expiry policy, multi-factor-authentication)
- Not educating oneself on the secure coding practices
- Writing SQL in application code, instead of using stored procedures or ORM libraries
- Not validating user input values at server side
- Not setting session expiry policy
- Giving password hints on unsuccessful login attempts
- Not using custom exception pages, instead expose the debug messages to user
- No logging and monitoring
- Not making use of cryptography libraries
- Not writing unit testing code
- Not Automating static code analysis tools such as SonarQube
- Using untrusted sources for downloading libraries
Video: Create dotnet console application using CLI
This is the screen demo of my previous blog post.
Create a .NET console application using command line
We don’t deal with .NET framework, or .NET Core anymore. We call it ‘.NET’. As of writing this blog, the latest version available is .NET 5. And, these steps works in previous versions of .NET Core also.
Assuming you have downloaded the latest version of .NET.
Step 1:Open command prompt
Step 2: Type: dotnet new console -name “HelloWorld“
You must see a new folder named “HelloWorld” crated with a directory structure like this:
You can open Program.cs to see its contents. It has a very basic program to display “Hello World!” message.
Step 3: Your .NET console application is ready. First, you have to build it
Type command: dotnet build “HelloWorld”
You can see HelloWorld.exe file is created, in addition to some other files in your folder \HelloWorld\bin\Debug\net5.0
Step 4: Run!
You can simply run the exe file directly going to the location, or by typing this command:
Type command:
Step 5: Alternate way to run the program
Go inside your program folder, i.e., “HelloWorld“, then type command:
dotnet run HelloWorld
or simply, dotnet run
JavaScript Notification API for beginners
Just two steps:
- Ask user the permission to send notifications
Notification.requestPermission();
2. Create/send notifiation
notificaiton = new Notification (‘This is a notification’);
Became Microsoft Certified Azure Solutions Architect Expert
Dapr: The distributed application runtime is now production ready
Simplify cloud-native application development. Focus on your application’s core logic and keep your code simple and portable
Dapr is an open source, portable, event-driven runtime that makes it easy for developers to build resilient, microservice, stateless and stateful applications that run on the cloud and edge. Dapr enables developers to focus on writing business logic and not solving distributed system challenges, thereby significantly improving their productivity, and reducing development time.
Read more: https://blog.dapr.io/posts/2021/02/17/announcing-dapr-v1.0/
Dapr Home: https://dapr.io/
K-MUG is organizing webinar on AI on 9Jan2021
Our very first session is planned for this Saturday.
Topic: Artificial Intelligence in the Real World
Presenter: Yanesh Tyagi
Date&Time: Saturday, 9 Jan 2020 – 7:00PM-8:00PM
Free Registration: https://k-mug-ai-in-real-world.eventbrite.com
Here goes the flyer designed by me:
#BeHonest 2021 Resolution
#BeHonest 100% is one of my 2021 resolution. It doesn’t mean I was not honest previous years but I was, though I was not Mr. Perfect!
But who in the life doesn’t say lies?
Looking back, I had many minor, but not-harmful lies to family and friends but I always had that feeling of regret, and the pain of making more lies to cover up a previous lie. Same time, I did postmortem of my actions and always used to replay in mind the same scene with the intention of having a better result, and that always gave me peace, and that process gave me courage to overcome when a next similar situation occurs again. Being honest always helped me to take more risks in life and I was never let down by anybody because I am being honest, but it has become an advantage for my life and career.
My twin brothers are my inspiration for ‘being honest’, and just because of this qualiry the people around me likes me.
