Hi! I am using C# and Visual WEB Developer 2005. I have a method protected void DropDownList1_SelectedIndexChanged... { this.DropDownList1.SelectedValue.ToString()... //more code } After I have put the DropDownList in the LoginView control, I can not access the list anymore...more >>

Greetings and Thanks for reading. I am trying to build some testing tools for Kerberos and Kerberos delegation. Where I am headed currenty is a simple webpage that calls a webservice. The webservices only job in life is to return the identity of the calling user. While this is simplistic...more >>

I'm using Microsoft.Samples.SSPI dlls to get the kerberos token and send the ticket server. If kerberos ticket is expired, this dll throws exception. My questionsis , in dot net, Is there a way to identify whether ticket is expired and if expired get a fresh kerberos token by providing user cre...more >>

what is best way to talk to https webpages within .net? any good librarys for talking to https websites? ...more >>

An exception occurs when attempting to run the application (app1) from a network drive. I understand what the exception is and how to fix it by granting the application permission on each client. This is a related but different question. app1 generates the following dialog: "app1.exe - CLR...more >>

HELP! What do I need to do to get rid of the following rogue spyware? It pretends to be genuine by using the Windows Security Shield. It is driving me mad and I have tried various anti-spyware systems without success.. The message reads as follows:................................ System Se...more >>

Hello i have encrypted a folder that is very important my O/S is WinXP Professional + SP2 but i had a problem on my laptop so i installed a new O/S. I made a mistake cause i didn't saved my certificates so now when i want to access the files inside my folder (they are .txt, .doc, .pdf, .vbp) th...more >>

Both at work (Entourage is too slow) and when I'm out of the office, I access my e-mail via our exchange server using a mac and IE, through microsoft outlook web access. There is a password 'system' in place that uses certain letters of our names - we are given our passwords and few people cha...more >>

Hi, Using the following code, will it work for the Unix box that's on the network's domain? Thanks. switch (child.Parent.Name) { case "CN=Computers"://Computer ...more >>

I used "Process.GetProcessesByName" method under XP with no problem. Under Vista it throws "InvalidOperationException" if the user is not Administrator. Please help. Eugene....more >>

Hi I have three questions for my thesis (diploma) presentation: 1. Why is there no effective way to clear out a System.String object from the memory? Why can't a System.String object be programmatically scheduled for garbage collection? 2. When I convert a SecureString to a System.Strin...more >>

I have a .net user control which purpose is a chat client and I am getting the error: --- System.Security.SecurityException: Request for the permission of type 'System. Net.DnsPermission, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed. At System.Security...more >>

Can someone point me in the right direction for finding out how to do custom authentication in a WinForm application? I have a WinForm (VB.Net) application with a login screen. I want my users to input their username and password, then I will authenticate them against my database. That's ...more >>

Hi, Hopefully Ive posted this correctly. I have a small app that loops through a directory to copy files to another server. (This is fine) The directory on the other server has been secured with only certain users allowed access. I use the file.move command in vb.net to move the fil...more >>

Hi, I have a problem with my decryption, the encryption seems to work fine but when I try to decrypt the encrypted string I get an exception "Padding is invalid and cannot be removed." thrown on sreader.ReadToEnd(); so could anyone tell me what I'm doing wrong? public class MyRijndael {...more >>

Hi I am playing around with the Peer to Peer example provided by Justin Smith in the October issue of the MSDN Magazine. One of the things that the sample application "Picture Viewer" does is to attempt to get a X.509 Cetificate from the Certificate Store. <code> private X509Cer...more >>

Hello: I have a Click Once application which makes a secure remoting call to the server. The server can see the windowsidentity of the person making the call and can then do authorization checks and pass that information back to the client. This works fine when I run the application in-hous...more >>

Hi! I've setup everything to solve this issue but I still get the message "Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'." I have the tags in webconfig <authentication mode="Windows" /> <identity impersonate="true" /> I have the SQL connection string "Persist S...more >>

The example code in the RijndaelManaged class documentation has the following RijndaelManaged myRijndael = new RijndaelManaged (); ICryptoTransform encryptor = myRijndael.CreateEncryptor(key, IV); MemoryStream msEncrypt = new MemoryStream(); CryptoStream csEncrypt = new CryptoStream(msEncr...more >>

I am trying to access a COM+ component through embedded code of my Reporting Services report (an ASP.NET application). I did everything that Reporting Services told me to use an external dll, but I am still getting the following error: System.Security.SecurityException: Request for the permi...more >>

I want to create a custom exception class that contains an additional field. However, when I test my exception class I have a problem with serialization where a SecurityException is thrown. Since I believe I have followed all the rules (including using FxCop on my class) I have tried to simpli...more >>

I would really like to avoid having to reinstall this app on 20 some users on our local network because the Certificate expires after a year. But as soon as I uncheck the "Sign the ClickOnce manfiest box" it checks itself after I rebuild the app and then the publish fails with the error: Sign...more >>

I'm working on a project that uses a combination of an ASP .Net 1.1 application, and a C# .Net 1.1 forms application to securely get data from a server to the client. The way I have it working now is the C# app posts a request (using HttpWebRequest) that includes a command (that tells the s...more >>

Hi I have written an application in which I am using AD groups to set the program permissions. sample code: System.Security.Principal.WindowsIdentity ident = System.Security.Principal.WindowsIdentity.GetCurrent(); System.Security.Principal.WindowsPrincipal prin = new System.Security.Prin...more >>

On some of our Win2k3 (x64) servers we are getting the following error message with our application: "Application attempted to perform an operation not allowed by the security policy." This app needs to read/write registry keys and read the local file system (outside the directory tree t...more >>

I am trying to figure out some strange behavior we are seeing with an application we've recently created using Visual Basic 2005. The application works fine on some of our systems, but on others it gives us: "Application attempted to perform an operation not allowed by the security policy"...more >>

Hi, I am trying to rebbot a remote computer using WMI in c# but it failes and riases an exception called "Security Exception". What seeting i need for code level security which gives me an access to use the System.Managent namespace. ...more >>

I am trying to secure an Excel smart document using WSE3 and VSTO. I have Office 2003 Pro, VS 2005, WSE3, and VSTO installed (not SE). I have downloaded the Excel Invoice Sample application and modified it to work with a web service I developed that is secured using WSE3 extensions and the...more >>

Hi folks, I'm deploying my app to a network share and I need the security permissions installed on the client. AFAICT I cannot use ClickOnce because ClickOnce deployment doesnt allow user to specify install location i.e. Network share. So I have gone down the route of creating a Strong Name...more >>

Hi all, I am using webrequest and webresponse to chekc validation of url. while validating url if i open that url in IE it is working properly but through code it is showing error as shown in subject linke. can anyone help me in solving this problem. Please help me asap. thanks in ad...more >>

Dear all, What is the guide line or rules to selectr the proper enryption type like DES, triple DES, RCA2, Rinjnael ? Does the selected always the hihest bits encryption is the key in spite of performance ?? thnaks for comments regards serge...more >>

Hi We have a requirement to get the non-virtual version of GetHashCode for any object (value or reference type). There is a call System.Runtime.CompilerServices.RuntimeHelpers.GetHashCode, but this fails under some circumstances on 1.1 when passed Int32 and so we have some IL code to achi...more >>

Is there a FileSecurity method that can determine if the current WindowsIdentity has "effective" file access permissions? The challenge is the current identity may be "MYDOMAIN\JDOE", but I do not know how to determine if a group this identity belongs, for example "EVERYONE", permits write ...more >>

Let's suppose we have the following class: [PrincipalPermission(SecurityAction.Demand, Authenticated = true)] public class TestClass { [PrincipalPermission(SecurityAction.Demand, Role = "Administrator")] public void CallMe() { PrincipalPermission MyPermission ...more >>

Hello, I am trying to encrypt a block of data using RSA (in a C# webservice on = a Win2003 server machine) and then decrypt it (using CryptoAPI from C++ = on a WinXP machine). I cannot get it to work, I always get NTE_BAD_DATA. To encrypt, I do the following: CspParameters p =3D new CspPa...more >>

I have looked at several books and tutorials on .NET Security and frankly, I am in a fog on Code Access Security. I don't get it. Could someone please explain the need for CAS and some practical examples of why and when it is necessary to implement it? -- -------------------------...more >>

Dear all, I ma studying security stuff to prepare my next exam and in this study I am face to different example which connect to database within a ServicedComponent.. My question is what is the adavantang of using this ServicedComponent features if no interest on Object pooling, Applicat...more >>

I want to display a UserControl on a web page using an <object> tag. The control has dependent assemblies that are quite large. These assemblies are installed on the client, but I don't see a way to use them. The dependent assemblies are always download from the web server resulting in into...more >>

My goal is to run .NET assemblies referencing Entlib 2.0 from remote network shares. I've got a successful strong named build of Enterprise Library 2.0, and I can build strong named assemblies referencing these assemblies. I've then used the Increase Trust wizard to trust all assemblies ...more >>

Hi, In my program i use the TripleDES class to do the encryption, and i have key( ) and iv( ) in that class for encrypt/decrypt a string. I do not have any full version of obfuscate, and I only use dotfuscator which comes FREE with VS2005. However my problem is that, now using Reflector, I...more >>

I am being told the following as it relates to .Net, digital signatures and WebService Security. >>>>> If any of our XML files are signed (which happens when being serialized through .net as part of WS-Security), then the files themselves will be completely corrupted if opened. Opening ...more >>

Hello all, I've published application with partial trust option. When I'm installing it I haven't any problem, but when I try to run it, I've failed with warning message "Warning MSB3183: Reference "Interop. Microsoft.Office.Core.dll" is an interop assembly requiring full trust". The same f...more >>

When having the AppDomain.Current.SetPrincipalPolicy(WindowsPrincipal) static method set, the current process's Principal is propagated to the current thread to be used for Role-based access check. This happens the FIRDT time one asks for this property of the thread. Now - when doing an imp...more >>

OK, I have gotten a bit more familiar with using caspol. I am working with a C# library which is embedded in an HTML document (loaded as an ActiveX object in Internet Explorer). I first tried a URL condition (http://hostname/*). This worked fine for us, with the downside being that we are...more >>

Hello to all, I'm new to cryptography and I've to implement encryption of data into a database. I'm using .NET framework TripleDESCryptoServiceProvider to crypt and decrypt strings. Anyway I can not find any reference on how to calculate the length of the encrypted string based on the length...more >>

I've written a .net 2.0 Winforms app that contains a reference to a GPMC (Group Policy Management Console) DLL. The DLL is distributed with the app. When I install the app an attempt to invoke an operation that uses the DLL, I get a strong name validation failed error on that DLL. The DLL is s...more >>

I have a very simple Windows form application which opens a MS-Access database and fails because I assume its an untrusted location on our Novell Server. After looking through the Framework configuration tool under admin tools in Control panel I don't see any method to make a location trusted....more >>

I'm building a DLL to encrypt and decrypt information with certificates in ..net 2.0. I have working on something very similar like this link (http://windowssdk.msdn.microsoft.com/en-us/library/ms180956.aspx), but i have a problem. _ When i send or receive a crypt message from another hos...more >>

Hi Is it possible to generate an encryption key with a SecureString and the Rfc2898DeriveBytes class? Thanks and Regards, andersch...more >>