XSD and MSXML 4.0 SP2

Upgrading your XSD to parse on a release of the Microsoft XML Parser 4.0? Using XSD (XML Schema?) Having trouble?

Check this page about conformance to XSD specifications within the Microsoft XML Parser 4.0 software.

For example, might be generating the error:

'all' is not the only particle in a group, or is being used as an extension

Secure ASPSESSIONID Cookies in IIS 4, 5 and 6.0

>From this great page on Microsoft's Help and Support Site:

When you use Active Server Pages (ASP) in Internet Information Server (IIS) 4.0 or Internet Information Services (IIS) 5.0, a session cookie is sent to a user's browser. This cookie identifies the user for the time that they are on the site. These cookies are sometimes called memory cookies, because they are never stored on the user's hard drive like a regular cookie. In reality, this is an additional header that is sent to the browser. Anytime a Web site sends additional information such as this, the browser is required to send it back with each request (provided the server name does not change). The following is an example of an ASP Session Cookie:

Set-Cookie: ASPSESSIONIDGQQGGLIC=HKEDPNNBNBBKMOCFFBEIJENM; path=/

HTTP is a stateless protocol, which means that every time a user connects to a Web site it is just like the first time they connected to the Web server. This is a problem in an environment where you store server-side information for users. The session cookie is a means of performing such tasks.

A problem can occur if developers decide to store confidential or sensitive information in the session. For example, if a developer writes a piece of ASP code that requests a user's credit card number, the developer can store this information in a session variable (session variables are linked to the session cookie) on the server. The user can then browse to a page that lists the information they entered (for example, an authorization page or an order confirmation page). The credit card (when the list is generated) may be pulled from a session variable. If so, this information may be at risk.

The Help and Support page linked to above covers IIS 4.0 and 5.0, however, the command that it lists at the end:

NOTE: After you apply the patch, run the following commands to enable secure cookies (this example enables them for site 1):\

cd c:\inetpub\AdminScripts
cscript adsutil.vbs set w3svc/1/AspKeepSessionIDSecure 1

Is correct for all versions of IIS.  For version 6.0 of IIS simply run that command and the ASPSESSIONID cookie will be set to secure.

I Love Legos

This is a great video of an impressive Lego creation!

IEs4Linux, Support for IE7

I have blogged about this project before, but it is good enough to blog about again.  The project, called ies4linux exists to support installing and running multiple original versions of IE (5.0, 5.5, 6.0, 7.0) under Linux using Wine and CAB files.  Another good blog entry on Web Expose talks in detail about IE 7.0 support and has a good thread of comments from early testers and adopters.

IE on Linux.  Never would have guessed that one back in 1999, would ya?  =)

Quick and Dirty Regular Expressions Visual Basic

A quick and dirty blog about Regex and VB6, useful if you ever have to maintain or write real software in VB6.  Poor us, eh?

10 Best Extensions for Everyone's Favorite Browse

I was reading some random reviews of the last FireFox 2.0 release and hit this link on CNet showing a list of the "10 best firefox extensions" ... some of the choices are terrible, but some are rather good. I already use a few of them...