In my web.config I am storing a connection string to SQL server, along with password and user name. My goal is to somehow encrypt the string so it wouldn't be in clear text. From my understanding I cannot use the one-way algorithms, like MD5 or SHA1, since I'll have to decrypt the connect...more >>

I have a site that works fine on my local box. I then copy it to my production server (Win2003) and when I try to access the site I get: Server Error in '/' Application. ---------------------------------------------------------------------------- ---- Compilation Error Description: An er...more >>

My ASP.NET aspx page can impersonate a userX and access a UNC share just fine. When I start a thread from the same aspx page, my real intention, and try to impersonate in the thread method, I fail with "Unable to Impersonate." The thread successfully calls LogonUser, DuplicateTokens the ...more >>

Hi. I am posting another question. My computer is apparently hacked. He sent out many false messages to members of my site. What he did was he first sent me an email saying he couldn't login to my site. I went to my site and logged in to check what's wrong. He must have somehow ex...more >>

Hi. Okay. From this one site A, a user login then using a frame to go to site B. Then I get System.Security.Cryptography.CryptographicException: Bad Data. error. It seems to me the page of site B somehow recognize login information of site A and tries to decript it. Site A and Site B...more >>

I'm new to using this part of the framework, so I'm hoping I've done something obviously stupid, which someone will be able to point out in an obvious manner. Most of the samples I've seen involved encrypting and decrypting to and from a file, but that's not what I want. I want to be able ...more >>

Sorry, I'm a newbie to the Dot Net world. I've been downloading web application samples from the Internet to help me learn, but when I use Visual Studio 2003 to open SOME of the projects, I get the error "The current user is not a member of the VS Developers group on the web server computer...more >>

Everyone, I have a question about forms based authentication. Can the loginURL point at a different server than the current one? Example: A typical forms based authentication line in a web.config <authentication mode = "Forms"> <forms name="ProgAspNetCookie" loginURL="/login.as...more >>

Hi! I have Portal application which is on http. However I like to do user authentification using SSL I like approach most sites use: They have <form name="loginForm" action="https://sss" method="post"> ... I wonder how can I do "action" parameter dinamic from my ASP.NET ? Nex...more >>

If a user's password expires or an admin otherwise set the "user must change password" flag it appears that a user can no longer access the web site. Is this by design? This means I cannot enforce a password expiration policy for web site users. Bummer! Are there any IIS metabase settings that ...more >>

I am trying to send mail but I am getting an access is denied message. The cdosys.dll is in the C:\Winnt\system32 folder. Should I be granting access to this folder or to the dll to the ASPNET user account? Anyone know the proper security thing to do here? Thanks, Steve...more >>

I have an asp.net application that impersonates a user. I did a test for reading a registry key and noticed that the app can read the key even though the user does not have access to that key. aspnet user does not have not access either. After denying read access to the key for different users...more >>

Hello All, I am developing a Web Application in VB.NET. We are printing checks from a IE 6.0. Here are our requirments: 1. Checks will be printed on pre-printed stock, so we must format the document to lineup correcly. 2. We need to keep track of which checks printed or didnt print. So we n...more >>

Dear all, Platform: Windows 2000 server ASP.NET (using VB.NET 2003) Office XP When I reference to Word 10.0 Object Library (C:\Program Files\Microsoft Office\Office 10\MSWORD.OLB), then I just wirte: Dim WordApp as New Word.Application And I got error "System.UnauthorizedAcce...more >>

Hi all I'm trying to implement access check in my web application based on the current user. I've tried using the IsInRole method but have discoverad that it lacks one important feature. It doens't return TRUE if the user belongs to a domin group added to the local group i'm checking.. Samp...more >>