Kent

Had yet another great lunch with the incredible JD today. OK, there were four other people also having lunch with us, but JD is amazing to watch. His enthusiasm, passion and knowledge fill the room. It's almost infectious. Anyway, we were discussing two of his works of art -- Building Secure ASP.NET Applications and Improving Web Application Security. I found it amazing that so many people don't know about those two books, even internally. So much incredible value, from great planning and "how to" information, to checklists that you can go through to make certain you've done everything you need. Read them. You don't have to go page by page through, but find what you need and just do it.
Now for the special bonus question for those who have found this link, and have actually read this far. An idea, a proposal, something to make LCA not only do back flips, but actually have explosive brain haemorrages while they are doing it.
JD is the first person I have ever met who successfully uses a Wiki to keep notes. All of his notes, work in progress and whiteboard sketches are recorded on a wiki. That way, he can record information anywhere on campus. While interviewing a customer about their scenario, talking with security experts or product team members. While he works on the Whidbey version of the content. While JD showing this to Brian and I, both of us had an idea -- serialize it (after an approval process) onto MSDN. Would you find that useful? Or would you rather wait until the chapters begin to flow "for real"?