On Wednesday night I had the pleasure of seeing Steve Riley @ the .Net Users Group.

Of all the years I have been going to user groups this was by far the most engaging presenter I have ever had the joy of seeing. I had heard prior to the night that he was frequently rated as one of the top presenters at Tech Ed and was keen to see someone who has finely tune his presentation skills.

Steve is a senior security strategist in Microsoft's Trustworthy Computing Group in Redmond and presented on Security for Windows with some great statistics and general threat's that we face today as developers.

One story I loved was about going to an ecommerce website and entering 0.5 as a quantity which rounded up to 1 for the order, however the price was calculated on the quantity so $100 * 0.5 became $50, and on the same website you could enter a default test credit card number of something like 5111 1111 1111 1111 and you then get the order for free.

Even though this type of thing is a) illegal b) unethical it just highlighted that you need to be aware of anywhere in your applications you allow a user to enter data that it is fully validated and tested against all scenarios even crazy ones.

If you wish to check out some other great videos you can see Steve on TechNet