we need to record all msn conversations on our 15 yr old daughters PC, we suspect she keeps turning off the "save messages" option. if possible we would like to do this discreetly without her knowledge. Can anyone please help with advice how to do this????????...more >>

Security requirements are not satisfied because the security header is not present in the incoming message I get this exception every time I run my service thru ordinary IIS instead of Default IIS in VS.NET Studio. My service is a simple ‘Hello World with certificate policy. My client is ...more >>

I have the Microsoft AES Crypographic Provider installed. I am required to ONLY use FIPS Compliant encryption technology. If I use Rijndael.Create() to get a SymetricAlgorithm is this using the RijndaelManaged class or is it using the Microsoft AES Crypographic Provider? Thanks...more >>

Hi I would validate against a remote machine (to get a shared folder), using csharp o any .net language. What i want to get is similar to doing a "net use \\IP\folder /user:username" but from a .net program. How do i can do this programatically? Is there any example/guide??? Thanks in ...more >>

Hi: I think I need to user the FileDialogPermission permission, but I'm not sure :-/ I want to allow the user to select a file to open/save via a common dialog, but I don't want them to be able to delete/create/copy anything. Is this the right permission for the scenario? I would appr...more >>

Hi: Does anyone know of a graphical front end for the sn utility? TIA, MartinH....more >>

Hi: I have been playing around with the declarative StrongNameIdentityPermission, but have hit a strange problem. If I run an application with an incorrect public key, I get a Security Exception, then if I run the app with the correct key it works fine. So far, so good :-) Once I have...more >>

I have a requirement to throw an error if the end user turned off strong named validation for the assembly or any of its calling assemblies using the sn tool. I know I can make the check using the sn tool, but I want to do it during runtime. regards Ganesh...more >>

Does anyone have some best practices for how to deploy patches (selected subsets of assemblies) that will work with other previously deployed .NET assemblies that are all digitally signed with an Authenticode (digital code signing) certificate and enforce link demands? We're using LinkDemand to...more >>

Hi All, In an AD mixed mode environment, MSIE clients running on WinXP have problems accessing ASP .NET applications hosted in a Win 2003 server (the virtual dir is configured for integrated security): they get random authentication dialogs. I found out disabling the "Integrated Security...more >>

HOWTO Use CASPOL for Full-Trust Please help, I want to do the following things with CASPOL, and the documentation for CASPOL does not clearlt state how to do this: 1) Make the following security code group have full trust: - Runtime Security Policy - Machine - Cod...more >>

PRB - Control Panel Security for .NET 2.0 is Missing. Please help, In .NET 1.0 and 1.1, one could set security for .NET applications by going to the Control Panel - Administrative Tools, and then choose the "Microsoft ..NET Framework 1.1 Configuration" icon, to then set security for .NET ...more >>

Hi, I'm developing a Windows service using .Net 2.0. This service makes use of some external assemblies which are authenticode signed (using a certificate). If I try to start my code inside a console app for debugging, the app starts fast. However when I try to do the same as a service runnin...more >>

Hi All, Just looking for some info on the security bulletins for the .NET framework over the years. Is there anywhere I can get a history of security releases/patches for this platform?? Cheers J...more >>

I have a WEB app that occasionally needs access to a specific username and password. I don't want to store them in plain text. My thought is to encrypt the username and password and store the encrypted values in the WEB.config file, store the key and IV in a database table. The app can then ...more >>

I have developed a VB.NET Windows App that will be ran in a Citrix environment. If I run the program locally it runs without any problems, but if I run it from the Citrix server (remote desktop) or network share (\\citrix2\n$) I receive the following. ----------------------- See the end o...more >>

Hi there, I have a important question. If I use the ms sample code for setting security on this site http://msdn2.microsoft.com/en-US/library/system.io.directoryinfo.setaccesscontrol.aspx and use instead of read permissions FullAccess. Only full access is set for "This folder only". I'am...more >>

I'm writing a console app which encrypts a key and I want to crosscheck this key on my CF application. Since the CF doensn't have the System.Security.Cryptography namespace I used the opennet variant but a few things I can't figure out. I can't set des.mode to ecb (can't set it to anything in ...more >>

Howdy, Ran into this queer situation, hoping someone can explain why. Setup: ASP.NET application connecting to a SQL database. Implements Impersonation (SQL account credentials passed in a connection string). Website installed on Win2K3 When connected to the SQL database on Win2K, I fou...more >>

Once I told I didn't care about security and someone replied me, with much criticism, that security was paramount and should always be top of my priorities. Heck, my apps are plain desktop app, without client-server communication, without plugin and with fullright. what is security for m...more >>

Hi, I created a strong named DLL (say HostDLL) which has a method to create an AppDomain with limited permissions. The appdomain created using this method will have a child codegroup to provide fulltrust to HostDLL. HostDLL has another method which takes an assembly's name, class and static m...more >>

Hi I've read a little bit about the new security features of .NET 2.0. I'm looking for a few special functions.... - Can I request a certificate? ... - Can I access a smartcard? Perhaps with PKCS#11? ... .... with .NET 2.0? Where can I find a full overview about the new features (name...more >>

Hi, I have written an ASP.NET 2.0 application that uses Active Directory or ADAM to manage account users - the site has a page that allows people to create an account (much like any site). The page populates the AD with all the information and the user account but I am unable to enable the...more >>

Is there a way to programmtically move/copy the security policies that is defined for .Net 1.1 to also be defined for .Net 2.0 ? Peter ...more >>

Hi, I use CspParameters to create a key container which store a key pair generating from RSACryptoServiceProvider in C#, the code list blow: ============================================= CspParameters cp = new CspParameters(); cp.Flags = CspProviderFlags.UseMachineKeyStore; cp.KeyContainerName...more >>

Dear Friends, We are developing the software and we want to secure our SOURCECODE from the developers so taht they will not copy the Source Code and use the same when they are leaving the organization. It would be very nice if you can suggest any solution for same. Best regards Sharad....more >>

Hello All! I am writing a management application, which has to access remote machines registry via System.Diagnostics.EventLog.CreateEventSource [which is efficiently a registry access]. For each machine, I connect to, I create a DirectoryEntry and connect to that machine specifying cred...more >>

Hi, I would like send an user a license certificate which is an xml file. It is ok that they can read it they are just not allowed to change it. I have tried to sign my xml document using the SignedXml class and the RSACryptoServiceProvider to create the key and that works fine. But I gu...more >>

Hi, I have a set up where a windows client connects to a web service to retrieve a license file. The client is a consumer product which is beeing distributed to multiple locations. 1) I would like to restrict the web service so it only can be called from my application 2) I guess that I ha...more >>

I have a strong named assembly. It installs fine on my XP Pro Machine via the .net configuration tool. When I use the same tool to install it on a W2003 machine it says it isn't strongly named. As I don't have vs.net. Ihave been compliling my vb file as a module and then using al.exe to sign it ...more >>

I am developing with XP. I have some web services that can be called from an external application (not running .NET and on a different machine). So far I have been testing this application using impersonation on XP. When the application is deployed it runs under a slightly different context in...more >>

In VB.Net, I would like to identify the disk mounted (Volume Id an Serial Number). I guess I should use something like File System Object (in VB6). How do you do that in VB.Net? (I will apreciate a coded example.) Regards GB ...more >>

Hi all, don't know if anyone can help me i am trying to find some examples so that i can encrypt some credit card details in a database and extract the decrypt data when required. but i am new to the cryptography side of programming Many thanks Simon Whale ...more >>

I have a ASP.NET application which doing impersonation using the identity information defined through the AppPool setting in the IIS MMC. In the application, I need to make a request to a web resource (using System.Net.HttpWebRequest) as an authorized user. I do not want to hard-code usern...more >>

Hi All I found the attached program on the internet and i would like to use that thing...need it by tomorrow morning, so if anybody could give me a hint...that would be wounderful. The impersonation into antother user works properly. And on the local machine i can access everything. When ...more >>

Hi, I have a .Net application wherein I use Membership component for authentication & authorize. Users can be redirected to an asp application. I want to authenticate this request and so tried an httphandler which authenticates the User. For this I have added .Net dll in wildcard applicatio...more >>

Hi How can I get the current windows account in Domain\Account format with .NET 2.0 (VB.NET 8.0)? Can anyone help me? Thanks Dominik...more >>

is it possible than i use tripleDes to encrypt and user Des to dencrypt 3 times?...more >>

Hi i'm using declarative security to specify a role required to use a specific class: [PrincipalPermission(SecurityAction.Demand, Role = "Administrator")] public class MyClass : BaseClass { } I'm using reflection to fetch all classes which derives from BaseClass at runtime. Some of the ...more >>

Hi, I have created users on my machine using the WinNT-protocol (using the System.DirectoryServices namespace) and have then set file permissions for them using the new System.Security.AccessControl namespace in .NET 2.0. I have now installed Microsoft ADAM on my computer and am creating user...more >>

Hi i am writing web application but i i have problem with Page.User.IsInRole function. This function does not work for some users and groups. For examle user1 and user2 both are member of group1 and group2. When i run my page as user1 Page.User.IsInRole(group1) --> false Page.User.IsInRole...more >>

I have a program that is printing PDFs and to check that the PDF is complete we run the following code after we are done printing. lpsProcesses = Process.GetProcesses For Each lpsProcess In lpsProcesses If lpsProcess.ProcessName.CompareTo("Acrobat") = ...more >>

how to get file id in C# is there any kind of unique id that can be obtained for any file in a file system? ...more >>

i use Rijndael encryption with key of 32 bytes. how can i predict the maximum size of data needed to be allocated to the encrypted data knowing the size of the clear text before encryption? TIA. ...more >>

Hello, We are developing a Web based application that provides document handling for medical documents. It allows authorized users to store and retrieve medical documents by using Internet and a Web browser. Since medical documents are involved, security must be very high. We are using...more >>

I have a network socket-based app that will pass a username and password (encrypted). I want to validate that the username and password are valid, then make sure they are in Administrators group? I'm running Framework 1.1 on XP and Server 2003. Thanks. Amil ...more >>

Securing .DLLs from other applications Is there anyway I can ensure that only windows applications that I write in ..NET can call methods in my .NET class libraries? In other words, I don’t want anyone to be able to create an application that can call methods in my ..NET .DLLs, only .NET ...more >>

Hi, I have some .NET 1.1 code where I am using Authorization Manager. The code is adding the Everyone group as a reader to the security store. I am now upgrading this code to .NET 2.0 and I was wondering whether I can do this with incorporated .NET functions instead of calling the Win32 AP...more >>

Encrypted Base64encoded string : amc4bTZYQktPdWc9 From Delphi Base64Decoded From .net : jg8m6XBKOug= Decrypted from .Net : "password" Works fine.. Encrypted Base64encoded string : bjA0dXlkREw= From Delphi Base6...more >>

Hi, I need to run a program from vb.net using different credentials. Shell can't help me... Is there a way to do this ?? Thanks in advance! Rob Smeets...more >>