hello, is it possible to configure the ActiveDirectoryMembershipProvider to talk to a non-microsoft LDAP server such as novell eDirectory ? all the config settings only specify a standard LDAP connection string, so i am hopefull it can be done. if it can't be done, is there an LDAPMembers...more >>

When writing applications, how can I determine the minimum required privileges necessary for an operation to run? For instance, say my application needs rights to write/read to the registry, or I want to block some ports - how do I go about finding out what the minimum privileges required are...more >>

Can someone please describe why impersonation requires the impersonator to be local admin? ...more >>

We don't want or expect our users to make the decision as to whether or not to allow our program to run. I would like to set-up an internal certificate authority so we can sign our own applications to run with full trust. Does anyone have ideas or resources for this? Thanks, Mike ...more >>

To add a new permission set into the CAS through caspol we have to specify a XML file. surprisingly I can't find anywhere not even on MSDN, the format of this XML file. Can anybody forward me any link which explains the XML file for creating new permission sets. Regards, Triv ...more >>

I have some questions about persistent and session cookie handling that I can't quite get ironed out. I have two applications. One is Framework 1.1, W2K3 / IIS6, the other is 2.0, W2K3 / IIS6. For both, HTTPS / SSL is enabled, but not forced, because we use redirection to direct users that ...more >>

Hi I have a web service which uses WSE for signing, and SSL for confidentiality and authentication. Authentication is via client certificates. The above scenario is already implemented and cannot be changed. Client certs produced by a Microsoft CA work fine for authentication. The ce...more >>

I have an application that requires a user name and password so no one sits down at anyone else's desk and runs the application as that user. I don't want to create a database to store user names and passwords. All I want to do is prompt the user for their Windows user name and password and veri...more >>

Dear List, I have developed an application in VS 2005. The application works fine when run from the Local drive C:\ but when the application is run from a Network Drive it throws a Security Exception. The Exception getting thrown is - I would rather the user doesnt have to configure the a...more >>

I am implementing a licensing library to use across all my companies applications. The basis for this system is going to be simple text files that contain the details of the enclosed license and then an encrypted has of the contents to validation upon reading in the file just to prevent t...more >>

What do FTP servers do when file send fails durring a file upload? Are partial files ever written? does ftp protocol cover this? ...more >>

We (the software company I work for) have been using a desktop.ini file to (1) create a unique icon for the "library folders" used with our application and (2) to associate these folders with our application so that double-clicking on the folder launches our application and lets our application ...more >>

I'm looking for information on how to programmatically validate a client certificate. I found this article http://support.microsoft.com/kb/315588/ but it stops short in describing how to actually validate the cert. HttpClientCertificate cert = Request.ClientCertificate; if (cert.IsPresent) ...more >>

Hi, I have similar problem to this thread (and I want the same thing - I wanted to check the user role of a given user name) -> http://groups.google.com/group/microsoft.public.dotnet.security/browse_thread/thread/645bf9a51c53c2fc/e237ffaf0ed88c0d Code is not executed on a 2003 server or high...more >>

I have VS 2003 on my laptop and want to keep it, but I need to do a re-install on my laptop of windows XP, I have registered the software but can no longer find the CD because I moved to another state in June. I need to re-install windows xp because my computer is running slower, want to clea...more >>

I want to pass a string password in System.Diagnostics.Process.Start. The problem is that the defined password parameter is SecureString not string while my password is string. Normal casting evaluates to errors. Please how to cast string to SecureString? Many Thanks in Advance. Bis...more >>

Hi my webserver is running .Net 1.1 and intermitently i get the following error. Does anyone out there have any idea why this happens? And how i can try and start solving the problem. Most of the time the website works okay. Thanks in advance! Server Error in '/Ed/ENROL' Application. --------...more >>

when my C# service impersonates a secondary account does the secondary account need any special permissions? what are they? ...more >>

Dear all, I am using framework 1.1 I try to add 2 security atributes to a component class but not able to do it based on syntax mistake that I could not find out. Applying one atribute is ok but more is a trouble... here si the code : ==================== Imports System.EnterpriseServ...more >>

Is there anyway to encrypt the connection string using an algorithm which is FIPS 140-2 certified, and then store the key in a FIPS 140-2 certified hardware store? We know that DPAPI doesn't do that. We also know that RSAENH is certified, but is there a way to use that to encrypt the connectio...more >>

I'm using c# to created a OU folder and named it "Isolate" in windows setting. DirectoryEntry newEntry = de.Children.Add("ou=Isolate", "organizationalUnit"); newEntry.CommitChanges(); My question is how do I move computer accounts from domain to this folder? ...more >>

Hi, I just discovered the Rfc2898DeriveBytes class, thanks to the MSDN nugget on storing passwords [1]. The thing is, it left me hanging at the end. Should I be using this new class or should I be using SHA256 to hash a concatenation of a user's password with a salt generated by means of an RNG...more >>

Der all, I have a text box where my user introduce a URL of type Http:\\.... or Ftp:\\... I need to verify that only this type of syntax is valid for my text box How can I perfomr that ?? Thansk for help...more >>

Dear all, I have a service which is runing under System Local account. That service is calling a COM+ serviced Components that is executed only by members of Domain\ACCOUNT group. I have add using COM+ mangement tool the DOMAIN\Account for the serviced component. I ma logged on my machin...more >>

I would like to store a Windows NT Account SID in an SQL server table as a SID String. What is the maximum length of a SID String? What is the maximum length of a SID byte[] array? Is this information published anywhere? Thanks Russell Mangel Las Vegas, NV PS I am just trying to av...more >>

I'm wroking on a C# class library which will use DPAPI (with 3DES algorithm) to encrypt the connction string which is stored in app.config file. I was wondering if there's a way to store the masterkey, which is used my DPAPI to encrypt/decrypt the password, in an extrenal hardware store such a...more >>

Hi, I need to do the following. 1. I have an .aspx on an IIS Server that is not in the domain.It performs queries against the domain controller. 2. User enters his login and password and clicks submit 3. I need to authenticate him for his login, password and then redirect to a different url ...more >>

I am implementing AzMan on Advanced Server 2000. I have downloaded and installed the runtime and MSXML 4.0. My question is specifically with regards to how the store is managed remotely. The server will be using local accounts, therefore I am not sure how I should go about adding those acco...more >>

Hi, Eugene Bobukh's weblog from May 2005 ( http://blogs.msdn.com/eugene_bobukh/archive/2005/05/06/415217.aspx ) documents that LinkDemands are optimized out in full trust mode in .NET 2.0. What is the best way to prevent third party applications from running methods within my libraries? Be...more >>

G'Day, I am looking to setup a plugin architecture for a project I am working on. My main application is signed, I would like all libraries that I load in my sandbox AppDomain to all be signed with the same key. It was all going very well until a requirement of the project was for these ...more >>

I have created a service that is running under the SYSTEM account. Using an IPC channel, a (non-administrative) user can call the service, requesting a program installation. The reason for having the service is to run the program installation with elevated rights, so I don't want the servic...more >>

I am new to ASP.NET and need to develop an application that archives / retrieves documents. When the document is stored, the user specifies the document permissions ( public or limited to a specific role/class of users ..) This means that when a person in Customer Service does a search, they ...more >>

I have been receiving messages from Michael Tapp @ cablespeed.com and they are always Microsoft related. Does he work for you and why am I getting them?...more >>

I have a managed user control in a web form. No matter how I set the CAS policy at the machine level, the managed user control always runs. The only setting that seems to make a difference is machine/all_code which is currently set to full trust. Any lesser setting and the ActiveX control does...more >>

I need to find out if i can write to a directory. There is a p/invoke method called AuthzAccessCheck. I have only found examples of the AccessControl namespace retrieving file.GetAccessControl instead of Directory.GetAccessControl. any ideas? thanks...more >>

Hi All, I am an applications developer with very basic knowledge of networking security concepts so please bear with while I try my best to explain the situation. I am looking for some best practice advice for how to structure the infrastructure for an internet facing web application. Here...more >>

in the patterns and practices guidelines for securing applications it recommends hashing passwords and using a salt if storing to a database (i am ok with this bit). however, it also recommends appending the salt to the hashed password for simplified storage and then makes the following stat...more >>

Hi All, Environment: - Windows 2000 Server - .NET 2.0 I have an unmanaged C++ application that references a mixed mode image DLL (mixed managed and unmanaged). Under .NET 1.1 we could trust the dll (the mixed mode dll) by running the following command line: caspol.exe -polchgprompt of...more >>

kind regards to all. I'm faced against an implementation problem on which I need some guidelines and advice. my client has a Win2k3 domain with ActiveDirectory. I need to implement two parts of the solution: a) Web Service that will run on a computer in the client's domain with access to...more >>

Hi all, I've got this problem. I've to implemente a solution like the example in http://support.microsoft.com/default.aspx?scid=3Dkb;EN-US;313891, but I can't configure correctly the example. Every time I click on the textBox a System.Security.SecurityException is raised. At the end...more >>

When I make a simple form connected to an access .mdb DataBase and run it I get this problem in my browser: Server Error in '/haggaiSite' Application -------------------------------------------------------------------------------- ‏‏למנגנון מסד הנתונים Jet של Microsoft ×...more >>

I am able to run my Windows app from a local drive. But I try running it from a mapped drive, I get the following error: Request for the permission of type 'System.Security.Permissions.SecurityPermission, mscorlib, Version=2.0.0.0 After I click Ok, it recommends I tweak the .Net Configuration...more >>

I use Visual Studio 2005 to publish software to clients. The end result I need is to simply put our business' name in the dialog box when someone installs our software. I have googled this to no end and have not found a solution that works. I have tried to use makecert.exe and then pvk2pfx.e...more >>

Hi, I am using Microsoft.Win32.Security package(C#) to set the NT security of specified folder/file. My purpose is to protect the content of files under a specified folder from being read by "Users" group members, whereas Users can still list the name of these files, and tranverse through s...more >>

Dear all if my conection string is based on Integrated Security, if from my applciation which used windows identification, is there a default log on user that will be used when connecting to SQL ( same as ASp Account when anonimous is used) ? thnaks for the info regards...more >>

Dear all, I have an ASP 1.1 application which used either Form or WIndows Identification The aplication is calling a web service to get data from an SQL server database Based on that, if Windows identification is used for my ASP application, in which user context will run my web service w...more >>

Hi. I am looking for a way to implement a single sign on process for going from a web site to a smart client. The website currently uses forms authentication. The smart client is on a different website and I want to pass the authentication from my web site to the smart client without having t...more >>

Hi, I need to do the following. 1. I have an .aspx on an IIS Server that is not in the domain.It performs queries against the domain controller. 2. User enters his login and password and clicks submit 3. I need to authenticate him for his login, password and then redirect to a different url ...more >>

Hi. I have serious problems trying to authenticate users with the build in functionality in asp.net 2.0. In the process of trying to debug this problem I've made a very simple webtest application. Hardware and software info: - I'm using VS2005 and I'm developing on XP - I'm using a local D...more >>

Hi all, I'm having a bit of a nightmare with an application i've been developing. firstly a little background on the problemns so far. Its a windows application written in C# which has been working fine when running on a local machine. Ideally what i want to do is to run the app over the ne...more >>