Does anyone knows how to encrypt a cookie? ...more >>

Hi all , how can i prevent the user of the asp.net page to copy or print screen some text i put it on the page . Please if any one know...reply as soon as posible on my e- mail . Mostafa Arafa SW Developer Egypt...more >>

How do I download file from the web when the site uses forms authentication? Without the authentication, webclient object works. Thanks, Buran ...more >>

hello, every one: could anyone tell me how to install IIS 6.0 on Windows 2000. Thanks a lot, haiwen...more >>

Anybody know the reason the call to DuplicateToken is needed in the Impersonation sample found at: http://msdn.microsoft.com/library/default.asp? url=/library/en- us/cpref/html/frlrfSystemSecurityPrincipalWindowsIdentityCl assImpersonateTopic.asp Since the underlying Win32 ImpersonateLogged...more >>

I have a VB project which has 1 web service. I have been developing the project happily with Dot Net until I applied SSL to be web server. Now the project cannot be opened in Dot Net. Removing project and re-adding does not display any files at the web project location. Any ideas? Thanks,...more >>

I was wondering if anyone out there could shed some light on this MSDE .NET interaction problem I am running MSDE 2K latest service pack running Mixed mode, .NET Framework 1.1 on XP Pro (also latest SP and updates) I have written a simple ASP app in C# which attempts to access MSDE via a We...more >>

I am only trying to connect to a local host . I am on Windows 2000 Server with sql 2000 server. My error is the classic "SQL server does not exist or access denied" I went to the MS site & they tell me what I know......"some" permissioning issue. I had this code working 2 months ago o...more >>

I'm trying to log on to SQL Server 2000 via an ASP.NET page using SqlClient with integrated security. I get the error message "invalid login NT_AUTHORITY/ANNONYMOUS". I believe I have all the correct web.config settigs correct because I can get the page to work as long as it is on the same...more >>

Hi, We have a web server running ASP.NET app in DMZ zone provided by Cisco PIX firewall. The web application is sending user id and password to the database server. What is the best practice to make the connection string secure? Thanks, Ali ...more >>

Hi, I have an ASP.NET web site that uses IIS Basic Authentication and accesses an OLAP Server at various stages. The OLAP Server authentication mechanism relies on Windows accounts and therefore when a new user needs access to the system we must create a new Windows user account for him. Th...more >>

In order to try to get my app more locked down, I made the username=machine. It works fine on my computer, but when I put it on my test box, it blew up says: Server Application Unavailable The web application you are attempting to access on this web server is currently unavailable. Please ...more >>

I've been spending some time recently writing some ASP.NET authentication code that relies on CAS to minimize the threat posed by luring attacks. However, it's becoming, um, painful, to constantly have to recycle the aspnet_wp.exe worker process via an IISRESET command every single time I rebuil...more >>

I am wondering how i can put an ampersand character into the value attribute of a key in the appSettings section of my web.config file. If i try to simply type it in, then run my web app, i get the following error: ---------------------------------------------------------------------------- ----...more >>

I was trying to find an old post in here but couldn't so I tried placing my cursor directly above a post that the "Search" engine should find and it didn't. Example: I put my cursor on "Authentication..."(date=Sep 9 2003 6:21AM) Click Search and put "A.M." in the "From" search box (which...more >>

I'd like to poll for some best practices about ASP.NET application security. Here's what it's about: I wanna develop an ASP.NET web application with VS.NET 2003. This application consists of some pages which are available for anonymous users and some that are NOT available for anonymous users...more >>

Hi, Is there any alternative or similar product for RSA security tokens/ Ace server ? Their product is good but expensive. Any help would be appreciated, Ali ...more >>

Hi! I need to restrict access to an intranet-site - The users are already logged in on their workstations (NT/Domain) - I need to be able to retrieve their username for logging purposes - The users must not be presented with a "login"-window - the are already logged in! This spells "Inte...more >>

Dear All, I have an application secured using the following in the web.config file... <authorization> <deny users = "?" /> <allow roles = "role1, role2, role3 etc. " /> (up to 8 different roles) <deny users = "*" /> </authorization> This works fine for new users I create and assig...more >>