All, What is the best way to protect IL code? --------------------------------------------------- Typical scenario: Visual Studio .NET 2003 includes Dotfuscator Community Edition, which intends to protect IL code. However, many .NET applications use data binding in UI forms. For example: ...more >>

Hi I have just started using FXCop which has informed me that I should be specifying permission requests for each assembly. I am new to code access security so I have had a good read around and think I am starting to understand. I have three assemblies in the app - the GUI, business objec...more >>

Is there a programmatic way to determine if the user has sufficient local rights to update the registry (HKLM\SOFTWARE\MYPRODUCT) and create/modify a local file (C:\Program Files\MyProductDir)? I've written my own custom installer. I'd like to perform these tests before installation begins, wi...more >>

Hi, First off, I'm developing a multi-tier application framework. I'm trying to have client applications perform authentication using a biometrics device (or any other method that does not check my login server for credentials). The problem after the authentication succeeds, is that the cli...more >>

Hi, I'm wrting a license check to my custom windows forms control...My control is written with Visual C# on VS.Net 2002... I've derived my own LicFileLicenseProvider and implemented IsKeyValid and GetLicense methods. In GetLicense method, when the control is in Run-Time context.GetSavedL...more >>

Hi Considering a multiuser system that supports server-side plugins, where users have access to different parts of the system through the same plugins, I'd like to know if the following situation can be solved using built-in ..Net security functionality: We have a plugin P, and two users...more >>

Hello. I've got the following problem: There is a web application (ASP.NET), that needs to authenticate users against local machine and Active Directory. By default, the application works as ASPNET account (Win2000, XP). When working on ASPNET account the apllication is able to do the fo...more >>

Hi all, First, please excuse my english... don't hesitate to ask for more details... I have a web service that need to be authenticated to allow users to connect. I'm building a Web Application to access this WS. I want every one to be able to acces the application. I tought, using th...more >>

does vb.net allow for locking the vb app? i.e., similar to leasing the sw where the user has to contact the developer on fixed intervals for a licensing code to unlock the software? also is there a dll for web sites to release the license code via web page or even directly from the vb app? ...more >>

Hi, I have inherited a windows forms app, which automates software updates. It is reasonably close, in pattern, to the Updater Application block from Microsoft. The app needs to register / un-register COM components on the client machine, as part of the software update process. The logged o...more >>

Hello, I am trying to use RSAPKCS1SignatureDeformatter.VerifySignature() but am getting a System.NotSupportedException, Additional information: EncryptValue. I know that RSA.EncryptValue() isn't supported but is the downstream effect that AsymmetricSignatureDeformatter isn't either? That s...more >>

I have a COM+ queued component written in C# and I'm trying to get it to = run under the 'NETWORK SERVICE' account, it runs perfectly fine under = the 'interactive user' as this happens to be a admin account (this is my = development machine) but when I switch the identity in the component = ser...more >>

I have a piece of code like this: If User.IsInRole("stic\ISSAdmins") Then cbOverrideLimit.Enabled = True End If If I sign on as a user who is not a member of stic2\ISSAdmins, the condition tests "false" as it should. If I add myself to the group and sign on, the condition returns "t...more >>

Hi, there, Can I use OpenSSL to encrypt a stream and decrypt it in my C# program using the same key and hash value? Thank you. -May ...more >>

Hi Everyone, This question may have already been asked before, but I can't seem to find any answers to it: In C# I know it is possible to access files using UNC path names, but how do I access a share on a computer with a different user name and password? In windows explorer when you try ...more >>

Hello all, I've looked through this newsgroup and saw lots of questions about running an application from a network drive or a local network. I know that when you do this, it puts the assembly into a different "zone" of trust which is more restrictive. In my situation this is a good thing. ...more >>

I haven't had to deal with the security stuff before now, and I can't seem to get started. I have a web service, and I want to log to the event log. When I try to create my event source I get a security exception that it can't write to the registry. I have tried using the framework configuratio...more >>

Hello, I have an ASP.NET web-application using Windows Based authentication that references a web-service to do business logic type things. I would like to secure the web-service with Windows Authentication as well and would like to forward the credentials from the original web-request (to the...more >>

Hi Everyone, I created my Windows service. I want to get the WindowsIdentity of the caller that calls my method in my Windows service. How do I do that? Thanks in advance!!! Cindy...more >>

I am using ASP.Net and Visual Studio2003 on an XP Professional development machine. The web application I am developing needs to behave a little differently for users who are members of the ISSAdmins group. I created this group, and made myself a member of it, on our domain server (which runs Wi...more >>

I downloaded a Microsoft Application Block - AuthPro. I was install it, and I want to build it, but missing namespace of "Microsoft.Interop.Security.AzRoles", I don't know how to get or find it? Who can help me? Thanks. -- let's open source together!...more >>

Hi all, I am going to add/remove hostnames from my dns server in my asp.net application, when I run the start method from the process class, it says "ERROR_ACCESS_DENIED 5 (00000005)", I must notate that I have inserted the Identity tag in the web.config as below: <identity impersonate="true" us...more >>

Is it a good practice by putting princicple object in Context? Is it possible to spoof the Context.Current.User? //code in global.asax Sub Application_OnAuthenticateRequest(ByVal Source As Object, ByVal Details As EventArgs) 'Authentication code goes here. myPrinciple = ... ...more >>

Does anyone know about any sample "working" source code on using SAML, Liberty Alliance, WS-Federation Single Sign-on solutions using C# and the dotnet framework??? The specs are just about unreadable and even if attempted to implement from the spec I have no idea how to test it. Looking for ...more >>

I just finished writing a nifty little utility and I would like to try distributing it publicly. Maybe I'm just being lazy, but the Dotfuscator CE Edition that comes with ..NET Studio seems to be not so straight forward. I just spent a lot of time creating this thing and the last thing I want...more >>

Hi All We have developed a set of technical environmental services (logging,security,exception handling etc.) to be used within our company. We want to secure these assemblies by requesting a StrongNameIdentityPermission on all of the public classes with the key that our company uses to sign the...more >>

I have next error: The default web access mode for this project is set to file share, but the project folder at http:\\localhost\WebApplication1' cannot be opened with the path 'c:\inetpub\wwwroot\Webapplication1'. The error returned was: ..... error HTTP 404 I don't create pages A...more >>