When I install .NET Framework Version 2.0 Redistributable I cannot find the 2.0 Confiuragation applet in control panel?!? http://www.microsoft.com/downloads/details.aspx?FamilyID=0856eacb-4362-4b0d-8edd-aab15c5e04f5&DisplayLang=en My machine has the applet after installing VS.NET 2005 RTM. ...more >>

I have a web site running under an Application Pool running within the context of a specific security account. One of the pages in the web site accesses a value from the registry. It appears from the behavior of the app that when the call to the registry is made, it is doing so within the co...more >>

hi, i'm working on an .net app (c#), plan to have users click a link that need to be encrypted, as it will contain their unique id. once clicked the link will need to be decrypted on a page and inserted into a table. does anyone know if oracle has anything i could use to encrypt/decrypt the d...more >>

I am starting to write an ASP.NET 2.0 web based application. For authorization we'd like to use the existing userids and passwords in our Active Directory. We cannot use Windows integrated security becauses users will be accessing our application from the intra AND internet net AND we don't ...more >>

Hi, I'm a experienced OO/C# developer, but don't know enough (or anything at all?) about security. Expecially if I implement Sharepoint Web Parts, I often have problems understanding what the differnt security/trust levels mean and how this affects my code. Could somebody point me to a g...more >>

Hi, I want to use impersonation to call a COM object on a remote machine. I have copied the code from this example: http://support.microsoft.com/default.aspx?scid=kb;en-us;Q306158#XSLTH3167121123120121120120 To create the object, I first do a Type.GetTypeFromProgID(clsid,server) which w...more >>

We use software that hashes passwords with the algorithm below but I have been unable to duplicate the results with VB.NET, I'm not even sure that it is possible. I can get a consistent hash back but it's not the same as what this code produces (I'm told it is Microsoft C++ using standard MS S...more >>

I am trying to configure a set of access rules for a subfolder in my project. The folder is a subfolder in the application folder and cannot read the dll file in the application's bin folder. How do I propertly tell the compiler in the Web.config file used in the sub folder where to find the...more >>

Hi All, Any body can provide me asp .net source codes for authentication against the active directory ?? regards alan yeo...more >>

HI, I have a VB6 COM DLL that I'm using in a ASP.NET project running on Windows 2003 Server. Using .NET 2.0. I'm getting a "Access Denied" error when the DLL tries to write to any directory. I've set the permissions very low, and tried just about everything, but it still won't write. 1. Ho...more >>

I need help figuring out what I'm doing wrong in this application I'm writing. In this application I create a new appdomain and load another managed .dll (implements a HelloWorld class) and calling a function in this new class that prints out all the evidence of its application domain. When ...more >>

Hi: Is there a similar tool for win2k? Any clue will be appreciated. Peter...more >>

Hi , Environment : VB.net, sql server 2000, Webservices I am using a desktop application which uses webservices to get its data from the sql server which is sitting on a remote machine over the internet. My clinet is really concerned about the data since it is not encrypted at all. So to ...more >>

Hi, I have an application that wants to implement its own security model on its own objects. I have a list of usernames that have access to the internal object. From the username, I can perfrom a lookup in Active Directory of the user object. What I want to do now is get the domain name of...more >>

Hi all, Anyone have a "File Locking" experience? I want to ask if the application can prevent 2 user access (concurrently) to file for content editing... any lock and unlock mechanism dotnet buildin? Thanks in advanced. steambun ...more >>

OK - I've seen signs of numerous people being stuck pounding their heads against desks with the same problem as I have, but I haven't seen any definitive answers on the subject. I don't need lectures on Alice and Bob; I'd prefer if someone give me a simple answer to what is, I think, a simple ...more >>

I'm having a problem trying to access an AzMan (Authorization Manager) XML store from a process running as a Win32 service. I get a "System.ArgumentException: The parameter is incorrect" thrown from AZROLESLib.AzAuthorizationStoreClass.Initialize(). The Win32 service is running as "Local Sy...more >>

I am building a new W2K IIS6 server to handle asp.net pages. Is it still necessary to manuall install the security patch to protect against canonicalization exploits as described in KB887289, or is this handled with windows/microsoft update now? Thanks for any info -- Jose S...more >>

Hello all, Is it possible to retrieve a list of Roles for a user with only a Username in ASP.NET? I have searched and searched and continually come across using System.Security.Principal.WindowsIdentity object. When I supply a UPN (domain\user or user@domain.com), I'm handed a "Unable to...more >>

I have some simple VB code that subclasses a base class from another assembly. The base class exposes an IDataReader via a protected field named m_data. When VB compiles the subclass, it has no problem accessing m_data from it's base and executing the IDataReader methods even though the bas...more >>

A problem of security: From a vb.net form I created the chance to add an SQL Server user with role as administrator. To create it, username and password are retrieved from two text box and then the login is created with: cmdSQL = "EXEC sp_addlogin '" & txtUser.text & "', '" txtPwd.text & "'...more >>

Hello, First I apologize by my english not being so good. Anyways here I go: The scenario consists on a Web application being accessed by determined users which should redirect to a ASP page providing other User credentials. On this manner, when any user with Credentials_1 browses my app, t...more >>

Hi all, I have developed a web project in ASP.NET that uses a legacy COM object (developed in VB6) by creating a wrapper using TlbImp.exe. Everything works fine on the Web server on Windows 2000, but I've been trying to move to Windows 2003 and everytime a call is made to the COM object th...more >>

streaming random filetypes from .aspx how to stream a file from inside a .aspx? e.g. so one could go href="./foo.aspx?file=bar.mp3" or href="./foo.aspx?foo.dat" etc. preferabley i would like all file types to open with "save as" when href clicked ...more >>

It's great that the CLR gives us this cool EventLog object for managing event logs. And they even give you this cool property "MachineName" to allow you to deal with event logs on a remote server. But what access rights are needed by an application if it is to do this? THAT information is...more >>

Hi, I am a bit new to this forum, so thank you in advance for your patience. I currently have a COM component that uses openSSL library for encyption, specifically, blowfish. I am looking to convert this C++ code to C#. My question is: 1. Is .Net cryptographic based on openSSL and ther...more >>

I setup a intranet application based on windows integrated authentication . windows integrated authentication checked in IIS and anonymous access unchecked. i have used impersonation in my web config file <identity impersonate="true" > <authorization> <allow roles="mydomain\group_a"/> <d...more >>

Hi I have implemented a custom code access permission class and a corresponding attribute class. I have inherited my permission class from CodeAccessPermission and the attribute class from CodeAccessSecurityAttribute class. I have assign a strong name to the assembly and de...more >>

I'm having a problem trying to access an AzMan (Authorization Manager) XML store from a process running as a Win32 service. I get an InvalidArgumentException thrown from AZROLESLib.AzAuthorizationStoreClass.Initialize(). The Win32 service is running as "Local System". If I run the service ...more >>

What hashing algoritm is actually used in the below code? Is it MD5, SHA-1, SHA-256, SHA-384, SHA512...? public class X509 { public static void Main() { // The path to the certificate. string Certificate =3D "Certificate.cer"; // Load the certificat...more >>

hello all i have this big trouble, i hope anyone can help me im desperate i received a DER file (*.key) with the following information accesible from openssl with a given password it displays through a pkcs8 -inform der ... blah blah blah the following -- BEGIN RSA PRIVATE KEY -- ewklwkelwkl...more >>

I got an X,509 end certificate where I need to verify the issuer of the certificate. The issuer certificate is installed in the Trusted Root Certification Authorities store in Windows. How can that be done using either Framework 1.1 directly or WSE 2.0. Thanks! /Kim ...more >>

in Application_BeginRequest how do i cancel the request and send back a message? ...more >>

Add/Edit Application Extension Mapping the OK button on Add/Edit Application Extension Mapping is perminantly disabled even when i specify my executable and extension. how to fix? I am running IIS on windows xp pro for development. ...more >>

I am writing some code to access share folder on a remote network. DirectoryInfo dicInfo = new DirectoryInfo("remoteNetwork\shareFolder"); if (dicInfo.Exists) { //application code followed } The problem is when I ran this code, it always give me dicInfo.Exists = ...more >>

Hi, Just wondering.. why is a CryptoStream with Rijndael/AES about 4 times slower than one with 3DES (I've tried both Rijndael and RijndaelManaged). Shouldn't it be the other way around? Example code below.. Rijndael takes about 2s here, TripleDES only 0.5s. Is there something wrong with...more >>

Hello, I have a workstation XP-Pro with SP2 and all updates installed where a second drive is mapped as a directory on C:. The maps in this directory (and the root map wher the drive is mapped to) go's automatic to the read only state. I can change the flag off but each time the system tu...more >>

Hello, I have a small architectal or development problem. My application must store some confidential information (for example, public key) on the end user's computer, that accessible only for my application (and not available for other applications). End user may be a local administrator o...more >>

hi all i have this certificate in pkcs12 (pfx) the thing is i want to encrypt using RSA encryption, how can i load my own set of keys stored in this file format (private key and public key are stored inside the archive) i can extract them using mentalis libraries, but i cant get them to manage ...more >>

Hi, In 1.0/1.1 the following code ensures that a class that wants to inherit from InheritanceDemandExample must be signed with the publisher certifcate contained in the file C:\Certs\pubcert.cer. using System.Security; using System.Security.Permissions; [PublisherIdentityPermission(S...more >>

Hello I hope you can help my with this... I have made a program in VB.Net, which is suppose to be in a shared directory on a server. Other people can then map the drive and run it from their client. The problem is just that to run the program (which is doing some file writing) from the clie...more >>

limiting access to files with asp.net is there any way i can make a file only accessible to certain users of my website? my files are to large to copy to a temp directory and they are of many types, .exe .xsl .xml etc. i want an href to each file but only allow users who have the right login-i...more >>

Hello! Why do I get the exception: "Length of the data to encrypt is invalid." .... even when I use the CFB or OFB cipher modes? These cipher modes should not care about the length of the encrypted data even without padding! I have to encrypt a stream of data but cannot wait until e...more >>

Hi everybody!! I have a lot of macros to sign. The problem is that every year when the certificate expires I have to sign every macro again with the new certificate. The certificates I'm using are from my own CA so I can't apply timestamp to the certificate. I would like to build an script ...more >>

hello. i've developed several windows forms user controls which are encapsulated by several asp.net server controls. all the user controls are embedded inside the dll that contains the asp.net server controls. the windows forms user controls were built using v1.1 of the platform. the pro...more >>

I have an application that uses remoting. I have strongly named every assembly in the application. I have granted FullTrust based on the key used for strongly naming. (I did this by creating a code group with the membership criteria being the public key that the assemblies are signed with.) I ha...more >>

Has anyone worked on the problem of converting cryptographically-strong random numbers [ such as those generated by RNGCryptoServiceProvider() ] to strings of chars built from specified sets of ASCII or Unicode characters -- without loss of the level of quality of randomness ? I have no pr...more >>

Hi, I've been trying to change the password of an active directory user through code. This computer executing the code is not the domain controller. the problem is that I keep getting an unauthorized access exception. I've been told I have to use the SSL authentication type to get this to wor...more >>

Hi, Caspol allows to see and configure the security policies. By default, the only configured one is the "machine" security policy. Thus, one can see that the assemblies from "My_Computer_Zone" are "FullTrusted". My question : how does the framework obtain the proof that an assembly bel...more >>

Hello All, I have a asp.net web application running on win2003 web server in a single domain. The database is SQL Server running on a separate database server in the same domain. Now i have following tasks to do: 1. Make the web application Single-Sign on so that once a user entered in the d...more >>