- SP Setia Bhd
- IOI Properties Bhd
- IGB Corporation Bhd
- Sunway City Bhd
- MK Land Bhd
- Sime UEP Properties Bhd
- Bandar Raya Developments Bhd
- Boustead Properties Bhd
- Island & Peninsula Bhd
- Sunrise Bhd
- Glomac Bhd
- Uda Holding Bhd
- E&O Property Development Bhd
- Naim Cendera Holding Bhd
- Petaling Garden Bhd
- YTL Land & Development Bhd
- Dijaya Corporation Bhd
- Paramount Corporation Bhd
- Selangor Properties Bhd
- Country Heights Holding Bhd
- Plentude Bhd
- Daiman Development Bhd
- PJ Development Holding Bhd
- Mah Sing Group Bhd
Friday, 15 March 2013
List of Top Malaysia Developers
Monday, 7 May 2012
Code Review - Improve .NET application
Summary
1. In Loop- avoid exception handling (try/catch and throw exception)
2. String management
3. Exception Handling
- try avoid this, use return error code instead
- throw exception is very expensive
Objective
1. Identifying coding techniques and design choices that could lead to performance and scalability issues
2. Identifying the cost and effort of fixing the performance and scalability flaws
Step By Step
1. Using FxCop analysis tool
- Analyze the binary assemblies (not source code) to ensure that they conform to the Microsoft .NET Framework Design Guidelines.2. Common Performance Issue
- Pay attention oni) Frequent code paths - area that frequently executed
ii) Frequent loops
iii) Resource cleanup
- Make sure code implement IDisposable
- Code must use the finally blocks or using statements
iv) Exceptions
- It can be expensive, try to reduce of use
- Use of return code to handle the error will be a better approach
- Avoid exception handling inside loops (try/catch block inside loop)
- Avoid catch and re-throw exception with no valid reason
v) String Management
- Consider StringBuilder instead of normal string
- Consider use multiple Response.Write instead of using a StringBuilder
vi) Threading
- For Server-side code, SHOULD not create threads per request
- Make sure code does not lock whole class
vii) Boxing
- Cause a heap allocation
- Avoid passing value types in method parameters when expect a reference type
- use system.object types instead
3. Managed Code and CLR Performance
i) Memory Managementii) Looping and recursion
iii) String operations
iv) Exception handling
v) Arrays
vi) Collections
v) Locking and synchronization
vi) Threading
vii) Asynchronous processing
viii) Serialization
ix) VB considerations
x) Reflection and late binding
xi) Code access security
xii) Ngen.exe
4. ASP.NET
5. Interop
6. Enterprise Services
7. Web Services
8. Remoting
9. Data Access
Code Review Checklist
Referenced from Microsoft TechNet (http://technet.microsoft.com/en-us/library/cc707802.aspx)
Security
This
section of the code acceptance checklist contains suggested items to help
ensure that solutions that are submitted for deployment in a SharePoint
environment have been developed by using best security practices.
⃝
|
The application uses an
inclusion list (known, valid, and safe input) rather than an exclusion list
(rejecting known malicious or dangerous input).
|
⃝
|
All user input is encoded with IOSec when displayed
to clients.
|
⃝
|
Character encoding is set by the server (ISO-8859-1
is recommended).
|
⃝
|
Plain text passwords are not present in Web.config, Machine.config,
or any files that contain configuration settings. Utilities such as
Aspnet_setreg.exe and Trustee or the identity setting in AppPool on IIS 6.0
or IIS 7.0 are used to encrypt credentials.
|
⃝
|
If cookies contain sensitive data, they are marked
secure.
|
⃝
|
Input surfaces in Web parts and other customizations
include boundary checks, input data integrity checks, and appropriate
exception handling to protect from cross-site scripting and SQL injection.
|
⃝
|
The design addresses potential canonicalization
issues.
|
⃝
|
You avoid using AllowUnsafeUpdates. You use
ValidateFormDigest() and, if necessary, use elevated privileges to interact
with SharePoint objects. In cases where AllowUnsafeUpdates must be used, you
ensure that AllowUnsafeUpdates is set to False in your
try-catch-finally block, or you use a Dispose() method (as required by the
IDisposable interface) to avoid security issues. |
Session Management
This section of the code
acceptance checklist contains suggested items to help ensure that solutions
that are submitted for deployment in your SharePoint environment have been
developed by using best practices for managing sessions.
⃝
|
Session state is strong,
unpredictable, and protected from unauthorized access or replay attacks.
|
⃝
|
Session lifetime is limited to 30 minutes maximum of
inactivity.
|
⃝
|
Session identifiers are not passed in the URL, and
the ASP.NET feature, cookieless session, is not used.
|
⃝
|
The session state service is disabled if not used.
|
Validation
This section of the code
acceptance checklist contains suggested items to help ensure that solutions
that are submitted for deployment in your SharePoint environment have been
developed by using best practices for validating input.
⃝
|
Input validation is
applied at all identified entry points (including form fields, querystrings,
cookies, HTTP headers, and Web service parameters).
|
⃝
|
The ASP.NET validateRequest option is enabled, if
possible.
|
⃝
|
Data is validated for type, length, format, and
range.
|
⃝
|
Security does not rely on client-side validation.
Instead, validation is performed on the server side.
|
⃝
|
The application consistently uses standardized input
validation such as RegEx throughout.
|
Sensitive Data
This section of the code
acceptance checklist contains suggested items to help ensure that solutions
that are submitted for deployment in your SharePoint environment have been
developed by using best practices for protecting sensitive data.
⃝
|
The application does not
log sensitive data in clear text.
|
⃝
|
Sensitive data is not stored in cookies.
|
⃝
|
Sensitive data is not stored in unencrypted, hidden
form fields or query strings. It is maintained by using server-side state
management.
|
⃝
|
SSL, IPSEC with encryption, or application layer
encryption prior to transmittal is used to protect sensitive data during
transmission.
|
⃝
|
Sensitive data is not cached. Output caching is off
by default.
|
⃝
|
Sensitive data that is transferred via e-mail uses
S/MIME encryption or Information Rights Management (IRM), depending upon the
intended recipient.
|
Exception Handling
This section of the code
acceptance checklist contains suggested items to help ensure that solutions
that are submitted for deployment in your SharePoint environment have been
developed by using best practices for handling exceptions.
⃝
|
The application uses a
standardized approach to structured error and exception handling throughout.
|
⃝
|
Error-handling code inherits from the SPException
class to maintain a consistent SharePoint look and feel for errors.
|
⃝
|
The application fails securely in the event of error
and exceptions.
|
⃝
|
Exception conditions do not allow a user to bypass
security checks to run privileged code.
|
⃝
|
The application returns generic custom error
messages to the client.
|
⃝
|
The code uses exception handling. The code catches
only the exceptions that you know about. For example, do not use
try{} catch(Exception ex){} unless you throw the error again. |
⃝
|
If code uses exception filters, it is not sensitive
to filter execution sequence (filter runs before
finally
block). |
⃝
|
Application errors do not contain sensitive
information or information that could be used to exploit the fault. .
|
Web Parts
This section of the code
acceptance checklist contains suggested items to help ensure that solutions
that are submitted for deployment in your SharePoint environment have been
developed by using best practices for developing Web parts.
⃝
|
Custom Web parts (including
resource files) are contained within a SharePoint Feature and are packaged as
a SharePoint solution in order to be deployed.
|
⃝
|
The configuration of Web parts that are being
deployed gives the administrator the flexibility of deploying to the Web
application level or lower.
|
⃝
|
You use the SharePoint Web part infrastructure's
standardized set of connection interfaces for Web parts to exchange
information with each other at run time.
|
⃝
|
Source code for third party Web parts solutions,
whenever possible, is provided with adequate documentation to ensure good
technical support.
|
⃝
|
All custom Web parts utilize the SharePoint
architecture to ensure consistent behavior across the application for
functionality such as single sign-on, feature deployment, and so on.
|
Documentation
You should require adequate
documentation to ensure that customizations that you are being asked to deploy are
installable, supportable, and well tested. Furthermore, documentation indicates
that all errors that are generated by the customizations are properly described
and diagnosed. This section of the code acceptance checklist contains suggested
items to help ensure that solutions that are submitted for deployment in your
SharePoint environment have been developed using best practices for
documentation.
⃝
|
Customizations are
accompanied by installation instructions that detail how to install and
uninstall the package. Architecture diagrams that are related to the
installation of the solution are included. If it is not possible to roll back
a solution, this must be explained in the installation instructions so that
you can discuss the risks and prepare a plan for a system recovery.
|
⃝
|
Customizations are accompanied by test documents and
results.
|
⃝
|
Customizations are accompanied by a list of all
dependencies. This could include account/passwords, Web services, databases,
other solutions or Features, patches, tool sets or libraries, and other
dependencies.
|
⃝
|
A list of all event entries that are generated by
the customizations and the actions to take are supplied. This can take the
form of a table of error codes, where the severity and root cause of each
code is supplied.
|
⃝
|
Optionally, source code is provided to expedite
validation and testing by the IT organization.
|
⃝
|
Customizations that are an upgrade of previously
deployed customizations are accompanied by documentation that describes the
changes, considerations in upgrading the customizations, and rollback
instructions.
|
General Software Development Best Practices
This section of the code
acceptance checklist contains suggested items to help ensure that solutions
that are submitted for deployment in your SharePoint environment have been
developed by using best practices for software development.
⃝
|
Assemblies have a strong
name. (Dynamically generated ASP.NET Web page assemblies cannot currently
have a strong name.)
|
⃝
|
You use delay signing as a way to protect and
restrict the private key that is used in the strong name and signing process.
|
⃝
|
Assemblies include declarative security attributes
(with SecurityAction.RequestMinimum) to specify minimum permission
requirements.
|
⃝
|
Highly privileged assemblies are separated from
lower privileged assemblies.
|
⃝
|
If an assembly is to be used in a partial-trust
environment (for example, it is called from a partial-trust Web application),
then privileged code is in a separate assembly.
|
⃝
|
You rely on a native configuration file to support
the application instead of changing the configuration to the Web.config.
|
⃝
|
You use .NET Framework 2.0, 3.0, or 3.5.
|
⃝
|
You use a single .NET Framework version. You do not
mix multiple versions.
|
⃝
|
Your code is 64 bit compatible.
|
⃝
|
Your application does not try to directly access any
SharePoint databases. Data stores in SharePoint databases are only updated by
using the SharePoint object model.
|
⃝
|
You avoid hard coding strings and labels. You use
resources or language files instead.
|
⃝
|
When referencing the SPWeb or SPSite objects, you
employ a
using statement or, alternatively, you use an explicit call of the
.Dispose method to ensure proper use and disposing of the memory objects. |
⃝
|
You use caching as appropriate to reduce unnecessary
round trips. For Web parts, you expose the cache expiration (duration) as a
Web part property.
|
⃝
|
When packaging your solution, you include a Code
Access Security policy for the solution and, if necessary, include your
assembly in the Safe Controls list though the solution.
|
⃝
|
When logging code, you use the Portal Log class to
log the SharePoint Unified Logging Service (ULS) logs.
|
⃝
|
If you need to update multiple list items by using
remote code, you use the Web service to update list items. You only use
SPListItem.Update() if you have to update more than one item at a time by
using local OM-based code.
|
⃝
|
When using the Count property of a
SPListItemCollection, you only call it once and then store it in a variable
that you can refer to when looping. You do not call it inside a loop.
|
⃝
|
The solution uses the AppSettings object to
implement XML mapping. (This can be provided by using the settings
persistence framework in .NET 2.0, 3.0, or 3.5.) The solution avoids creating
custom XML files and a strongly typed object for XML mapping.
|
⃝
|
Installation and deployment logging are provided in
the event logs to enable appropriate operational troubleshooting during
installation and uninstallation.
|
Reference:
http://msdn.microsoft.com/en-us/library/ff647802.aspx
Saturday, 5 May 2012
.NET Stuff I Should Know..
Planning myself to answer all the questions..
What Great .NET Developers Ought To Know
Everyone who writes code
Describe the difference between a Thread and a Process?
What is a Windows Service and how does its lifecycle differ from a "standard" EXE?
What is the maximum amount of memory any single process on Windows can address? Is this different than the maximum virtual memory for the system? How would this affect a system design?
What is the difference between an EXE and a DLL?
What is strong-typing versus weak-typing? Which is preferred? Why?
Corillian's product is a "Component Container." Name at least 3 component containers that ship now with the Windows Server Family.
What is a PID? How is it useful when troubleshooting a system?
How many processes can listen on a single TCP/IP port?
What is the GAC? What problem does it solve?
Mid-Level .NET Developer
Describe the difference between Interface-oriented, Object-oriented and Aspect-oriented programming.
Describe what an Interface is and how it’s different from a Class.
What is Reflection?
What is the difference between XML Web Services using ASMX and .NET Remoting using SOAP?
Are the type system represented by XmlSchema and the CLS isomorphic?
Conceptually, what is the difference between early-binding and late-binding?
Is using Assembly.Load a static reference or dynamic reference?
When would using Assembly.LoadFrom or Assembly.LoadFile be appropriate?
What is an Asssembly Qualified Name? Is it a filename? How is it different?
Is this valid? Assembly.Load("foo.dll");
How is a strongly-named assembly different from one that isn’t strongly-named?
Can DateTimes be null?
What is the JIT? What is NGEN? What are limitations and benefits of each?
How does the generational garbage collector in the .NET CLR manage object lifetime? What is non-deterministic finalization?
What is the difference between Finalize() and Dispose()?
How is the using() pattern useful? What is IDisposable? How does it support deterministic finalization?
What does this useful command line do? tasklist /m "mscor*"
What is the difference between in-proc and out-of-proc?
What technology enables out-of-proc communication in .NET?
When you’re running a component within ASP.NET, what process is it running within on Windows XP? Windows 2000? Windows 2003?
Senior Developers/Architects
What’s wrong with a line like this? DateTime.Parse(myString);
What are PDBs? Where must they be located for debugging to work?
What is cyclomatic complexity and why is it important?
Write a standard lock() plus “double check” to create a critical section around a variable access.
What is FullTrust? Do GAC’ed assemblies have FullTrust?
What benefit does your code receive if you decorate it with attributes demanding specific Security permissions?
What does this do? gacutil /l | find /i "Corillian"
What does this do? sn -t foo.dll
What ports must be open for DCOM over a firewall? What is the purpose of Port 135?
Contrast OOP and SOA. What are tenets of each?
How does the XmlSerializer work? What ACL permissions does a process using it require?
Why is catch(Exception) almost always a bad idea?
What is the difference between Debug.Write and Trace.Write? When should each be used?
What is the difference between a Debug and Release build? Is there a significant speed difference? Why or why not?
Does JITting occur per-assembly or per-method? How does this affect the working set?
Contrast the use of an abstract base class against an interface?
What is the difference between a.Equals(b) and a == b?
In the context of a comparison, what is object identity versus object equivalence?
How would one do a deep copy in .NET?
Explain current thinking around IClonable.
What is boxing?
Is string a value type or a reference type?
What is the significance of the "PropertySpecified" pattern used by the XmlSerializer? What problem does it attempt to solve?
Why are out parameters a bad idea in .NET? Are they?
Can attributes be placed on specific parameters to a method? Why is this useful?
C# Component Developers
Juxtapose the use of override with new. What is shadowing?
Explain the use of virtual, sealed, override, and abstract.
Explain the importance and use of each component of this string: Foo.Bar, Version=2.0.205.0, Culture=neutral, PublicKeyToken=593777ae2d274679d
Explain the differences between public, protected, private and internal.
What benefit do you get from using a Primary Interop Assembly (PIA)?
By what mechanism does NUnit know what methods to test?
What is the difference between: catch(Exception e){throw e;} and catch(Exception e){throw;}
What is the difference between typeof(foo) and myFoo.GetType()?
Explain what’s happening in the first constructor: public class c{ public c(string a) : this() {;}; public c() {;} } How is this construct useful?
What is this? Can this be used within a static method?
ASP.NET (UI) Developers
Describe how a browser-based Form POST becomes a Server-Side event like Button1_OnClick.
What is a PostBack?
What is ViewState? How is it encoded? Is it encrypted? Who uses ViewState?
What is the <machinekey> element and what two ASP.NET technologies is it used for?
What three Session State providers are available in ASP.NET 1.1? What are the pros and cons of each?
What is Web Gardening? How would using it affect a design?
Given one ASP.NET application, how many application objects does it have on a single proc box? A dual? A dual with Web Gardening enabled? How would this affect a design?
Are threads reused in ASP.NET between reqeusts? Does every HttpRequest get its own thread? Should you use Thread Local storage with ASP.NET?
Is the [ThreadStatic] attribute useful in ASP.NET? Are there side effects? Good or bad?
Give an example of how using an HttpHandler could simplify an existing design that serves Check Images from an .aspx page.
What kinds of events can an HttpModule subscribe to? What influence can they have on an implementation? What can be done without recompiling the ASP.NET Application?
Describe ways to present an arbitrary endpoint (URL) and route requests to that endpoint to ASP.NET.
Explain how cookies work. Give an example of Cookie abuse.
Explain the importance of HttpRequest.ValidateInput()?
What kind of data is passed via HTTP Headers?
Juxtapose the HTTP verbs GET and POST. What is HEAD?
Name and describe at least a half dozen HTTP Status Codes and what they express to the requesting client.
How does if-not-modified-since work? How can it be programmatically implemented with ASP.NET?
Explain <@OutputCache%> and the usage of VaryByParam, VaryByHeader.
How does VaryByCustom work?
How would one implement ASP.NET HTML output caching, caching outgoing versions of pages generated via all values of q= except where q=5 (as in http://localhost/page.aspx?q=5)?
Developers using XML
What is the purpose of XML Namespaces?
When is the DOM appropriate for use? When is it not? Are there size limitations?
What is the WS-I Basic Profile and why is it important?
Write a small XML document that uses a default namespace and a qualified (prefixed) namespace. Include elements from both namespace.
What is the one fundamental difference between Elements and Attributes?
What is the difference between Well-Formed XML and Valid XML?
How would you validate XML using .NET?
Why is this almost always a bad idea? When is it a good idea? myXmlDocument.SelectNodes("//mynode");
Describe the difference between pull-style parsers (XmlReader) and eventing-readers (Sax)
What is the difference between XPathDocument and XmlDocument? Describe situations where one should be used over the other.
What is the difference between an XML "Fragment" and an XML "Document."
What does it meant to say “the canonical” form of XML?
Why is the XML InfoSet specification different from the Xml DOM? What does the InfoSet attempt to solve?
Contrast DTDs versus XSDs. What are their similarities and differences? Which is preferred and why?
Does System.Xml support DTDs? How?
Can any XML Schema be represented as an object graph? Vice versa?
Reference:
http://www.hanselman.com/blog/WhatGreatNETDevelopersOughtToKnowMoreNETInterviewQuestions.aspx
http://www.hanselman.com/blog/ASPNETInterviewQuestions.aspx
What Great .NET Developers Ought To Know
Everyone who writes code
Describe the difference between a Thread and a Process?
What is a Windows Service and how does its lifecycle differ from a "standard" EXE?
What is the maximum amount of memory any single process on Windows can address? Is this different than the maximum virtual memory for the system? How would this affect a system design?
What is the difference between an EXE and a DLL?
What is strong-typing versus weak-typing? Which is preferred? Why?
Corillian's product is a "Component Container." Name at least 3 component containers that ship now with the Windows Server Family.
What is a PID? How is it useful when troubleshooting a system?
How many processes can listen on a single TCP/IP port?
What is the GAC? What problem does it solve?
Mid-Level .NET Developer
Describe the difference between Interface-oriented, Object-oriented and Aspect-oriented programming.
Describe what an Interface is and how it’s different from a Class.
What is Reflection?
What is the difference between XML Web Services using ASMX and .NET Remoting using SOAP?
Are the type system represented by XmlSchema and the CLS isomorphic?
Conceptually, what is the difference between early-binding and late-binding?
Is using Assembly.Load a static reference or dynamic reference?
When would using Assembly.LoadFrom or Assembly.LoadFile be appropriate?
What is an Asssembly Qualified Name? Is it a filename? How is it different?
Is this valid? Assembly.Load("foo.dll");
How is a strongly-named assembly different from one that isn’t strongly-named?
Can DateTimes be null?
What is the JIT? What is NGEN? What are limitations and benefits of each?
How does the generational garbage collector in the .NET CLR manage object lifetime? What is non-deterministic finalization?
What is the difference between Finalize() and Dispose()?
How is the using() pattern useful? What is IDisposable? How does it support deterministic finalization?
What does this useful command line do? tasklist /m "mscor*"
What is the difference between in-proc and out-of-proc?
What technology enables out-of-proc communication in .NET?
When you’re running a component within ASP.NET, what process is it running within on Windows XP? Windows 2000? Windows 2003?
Senior Developers/Architects
What’s wrong with a line like this? DateTime.Parse(myString);
What are PDBs? Where must they be located for debugging to work?
What is cyclomatic complexity and why is it important?
Write a standard lock() plus “double check” to create a critical section around a variable access.
What is FullTrust? Do GAC’ed assemblies have FullTrust?
What benefit does your code receive if you decorate it with attributes demanding specific Security permissions?
What does this do? gacutil /l | find /i "Corillian"
What does this do? sn -t foo.dll
What ports must be open for DCOM over a firewall? What is the purpose of Port 135?
Contrast OOP and SOA. What are tenets of each?
How does the XmlSerializer work? What ACL permissions does a process using it require?
Why is catch(Exception) almost always a bad idea?
What is the difference between Debug.Write and Trace.Write? When should each be used?
What is the difference between a Debug and Release build? Is there a significant speed difference? Why or why not?
Does JITting occur per-assembly or per-method? How does this affect the working set?
Contrast the use of an abstract base class against an interface?
What is the difference between a.Equals(b) and a == b?
In the context of a comparison, what is object identity versus object equivalence?
How would one do a deep copy in .NET?
Explain current thinking around IClonable.
What is boxing?
Is string a value type or a reference type?
What is the significance of the "PropertySpecified" pattern used by the XmlSerializer? What problem does it attempt to solve?
Why are out parameters a bad idea in .NET? Are they?
Can attributes be placed on specific parameters to a method? Why is this useful?
C# Component Developers
Juxtapose the use of override with new. What is shadowing?
Explain the use of virtual, sealed, override, and abstract.
Explain the importance and use of each component of this string: Foo.Bar, Version=2.0.205.0, Culture=neutral, PublicKeyToken=593777ae2d274679d
Explain the differences between public, protected, private and internal.
What benefit do you get from using a Primary Interop Assembly (PIA)?
By what mechanism does NUnit know what methods to test?
What is the difference between: catch(Exception e){throw e;} and catch(Exception e){throw;}
What is the difference between typeof(foo) and myFoo.GetType()?
Explain what’s happening in the first constructor: public class c{ public c(string a) : this() {;}; public c() {;} } How is this construct useful?
What is this? Can this be used within a static method?
ASP.NET (UI) Developers
Describe how a browser-based Form POST becomes a Server-Side event like Button1_OnClick.
What is a PostBack?
What is ViewState? How is it encoded? Is it encrypted? Who uses ViewState?
What is the <machinekey> element and what two ASP.NET technologies is it used for?
What three Session State providers are available in ASP.NET 1.1? What are the pros and cons of each?
What is Web Gardening? How would using it affect a design?
Given one ASP.NET application, how many application objects does it have on a single proc box? A dual? A dual with Web Gardening enabled? How would this affect a design?
Are threads reused in ASP.NET between reqeusts? Does every HttpRequest get its own thread? Should you use Thread Local storage with ASP.NET?
Is the [ThreadStatic] attribute useful in ASP.NET? Are there side effects? Good or bad?
Give an example of how using an HttpHandler could simplify an existing design that serves Check Images from an .aspx page.
What kinds of events can an HttpModule subscribe to? What influence can they have on an implementation? What can be done without recompiling the ASP.NET Application?
Describe ways to present an arbitrary endpoint (URL) and route requests to that endpoint to ASP.NET.
Explain how cookies work. Give an example of Cookie abuse.
Explain the importance of HttpRequest.ValidateInput()?
What kind of data is passed via HTTP Headers?
Juxtapose the HTTP verbs GET and POST. What is HEAD?
Name and describe at least a half dozen HTTP Status Codes and what they express to the requesting client.
How does if-not-modified-since work? How can it be programmatically implemented with ASP.NET?
Explain <@OutputCache%> and the usage of VaryByParam, VaryByHeader.
How does VaryByCustom work?
How would one implement ASP.NET HTML output caching, caching outgoing versions of pages generated via all values of q= except where q=5 (as in http://localhost/page.aspx?q=5)?
Developers using XML
What is the purpose of XML Namespaces?
When is the DOM appropriate for use? When is it not? Are there size limitations?
What is the WS-I Basic Profile and why is it important?
Write a small XML document that uses a default namespace and a qualified (prefixed) namespace. Include elements from both namespace.
What is the one fundamental difference between Elements and Attributes?
What is the difference between Well-Formed XML and Valid XML?
How would you validate XML using .NET?
Why is this almost always a bad idea? When is it a good idea? myXmlDocument.SelectNodes("//mynode");
Describe the difference between pull-style parsers (XmlReader) and eventing-readers (Sax)
What is the difference between XPathDocument and XmlDocument? Describe situations where one should be used over the other.
What is the difference between an XML "Fragment" and an XML "Document."
What does it meant to say “the canonical” form of XML?
Why is the XML InfoSet specification different from the Xml DOM? What does the InfoSet attempt to solve?
Contrast DTDs versus XSDs. What are their similarities and differences? Which is preferred and why?
Does System.Xml support DTDs? How?
Can any XML Schema be represented as an object graph? Vice versa?
Reference:
http://www.hanselman.com/blog/WhatGreatNETDevelopersOughtToKnowMoreNETInterviewQuestions.aspx
http://www.hanselman.com/blog/ASPNETInterviewQuestions.aspx
Subscribe to:
Comments (Atom)