I'm using System.DirectoryServices.Protocols. I'm binding to an ADAM user. The basic functionality is working fine, correct passwords and user DNs successfully bind and incorrect passwords and user DNs fail. When the password is incorrect, but the user DN is correct I would expect that the ...more >>

For a .NET Framework 1.1 application, rules set in .NET Configuration 1.1 with a strong name sign full trust. But after installed .NET Framework 2 and VS 2005, the appcation works NOT properly. So should .NET Framework Configuration 2.0 set the same rules as Framework 1.1? Or something els...more >>

I must be missing something since this seems like a common task, but I can't find any .NET samples of, if given an NT domain/username and password, to validate that the username and password are correct. LogonUser won't work since the code needs to run on Windows 2000 without admin priviledge...more >>

Hi All, I need some help! I am about to complete an important company application that will be hosted outside our building. Is there a way of hiding/encrypting/securing bits of code so that even the Web Administrator of the hosting company cannot mess with my stuff and use my app as his/...more >>

Hi All, I want to know what support dotnet framework provides to implement Role based security. As per my knowledge, Principal permission is the only permission class supported for role based security. How can i customize the Role based security provided by framework as per my need. ...more >>

I am looking for a example on how to get info, like a Dumpsec using VB.Net 2005 the dumpsec dumps the permissions (DACLs) and audit settings (SACLs) for the file system, registry, printers and shares in a concise, readable format, so that holes in system security are readily apparent. DumpSec...more >>

How do I decrypt aes-128-cbc encrypted data using .Net? 1. I assume the Rijndael algorithm should be used but does just passing in a 128 bit key force it to be 128 instead of default 256? 2. Is the ms .net version cbc by default? 3. What do I use for the IV? There is no IV specified when th...more >>

I have a similar issue to Bob Eaton's previous post in that I have an app that stores data in [CommonAppData]/Company/Application. I need to give the local/users group 'modify' rights to this folder and have the modify right propagate to child files and folders. By the way, 'local/Users'...more >>

I'm trying to run a VB.NET from a dts. This works when I run the DTS manually but just hangs when I schedule the DTS. Has anyone seen this before ? I'm using vb.net 2003 and sequel server 2000 ...more >>

x-no-archive: yes Hi All: I guess I could use something like gnu pgp and piggyback that onto an FTP client but I was wondering if anyone knew of a commercial C# class library that has an FTP client that supports PGP encryption and digital signing? thanks again!!! ...more >>

..Net gurus, I have written an app that works great on my dev workstation. When I load it on the corporate server, it fails, seemingly with an error unrelated to security. (It says it cannot load a resource string, while all resources are embedded in the assembly.) However, when I get th...more >>

I have a hardware token that supports HMAC'ing with a key generated and protected on that token. For RSA operations I can use keys in the box by stuff like: CspParameters cp = new CspParameters( PROV_RSA_FULL, provider, container); cp.Flags = CspProviderFlags.UseExistingKey; RS...more >>

Hi, Is it possible to add custom fields related to Group/Role like printer name, file server, CC mail etc. to AzMan. We are planning to use AzMan but there are some business specific data for every role/group. Is AzMan meet the requirement? Can we modify AzMan (XML) to meet above...or we ...more >>

I am using the below sample for public private key encryption. And my = problem is I can encrypt with the public key and decrypt with the = private key but I can't encrypt with the private and decrypt with the = public. I always get a BadKey error when I pass in the public key to = decrypt. ...more >>

Greetings, I have built an ASP.NET (.NET 1.1) based web application for a financial services company. There are approx. 45 assemblies in the web application, and they are all private assemblies (i.e. deployed in the local bin folder). Recently, the customer has run a security source code sc...more >>

Is a x.509 certificate the same the as public key/private key pair?...more >>

What happens if I 1. Encrypt a message with x.509 certificate 2. Send the message over the internet 3. A couple of bytes gets corrupted on the way. Would that invalidate/corrupt the whole message?...more >>

Hi all, Using C#, does anyone know how I can manipulate the file permissions on a folder I've just created such that the folder does not inherit permissions from its parent. My code currently has a number of lines that look something like: dSecurity.AddAccessRule(new FileSystemAccessRule(...more >>

Hi! I have implemented entire RFC3161 (Time Stamp Protocol) with csharp, .net 2.0, VC 2005, for timestamping signatures with TSA. My problem is extract and get from SignedXml.Signature.SignatureValue hash, which must be send in request to TSA. I have spent lot of time on this, but cant see how ...more >>

hi, i had a series of websrevieces and asp.net 2.0 website which worked fine on a IIS5.0. It had to be moved to a new server with iis6.0 (windows 2003). I had some trouble getting it to work again but it worked... UNTIL the server became a domain controller and again it stopped workin...more >>

Dear all, I start to loose my hairs. Hoep someone could help me to recover..:-) I have build a remote object hosted in a Windows Service runing as LocalService. I have then a claient application which calling that remote object and based on the caller credential I shouzld authorise hit or n...more >>

Hello, I have a small c# code to install a windows service. The service is running on a domain user account which got created in the code just before the service created. I did some testing and got a very strange error: In my tese environment, I have three machines as a domain (2 machines...more >>

Hi, I am using the AD Membership provider for my web app. I added new attributes to my schema according to http://blogs.msdn.com/dansellers/archive/2005/11/09/491152.aspx and http://blogs.msdn.com/dansellers/archive/2005/10/20/483272.aspx. When I attmept to use the password recovery contro...more >>

Hello, I use NegotiateStream to test Kerberos and delegation in my windows 2003 test domain. My code is this: private static WindowsIdentity LogonUserTCPListen(string userName, string domain, string password) { // need a full duplex stream - loopback is easiest way to ge...more >>

OK, go easy, I'm a crypto-newbie, and also not sure if this is the right group for this posting. Here's the scenario: I have a web site and want business partners to be able to link to my web site from theirs, so I provide them the html syntax they can put on their site to link to an .as...more >>

Hello, I've ran into a sticky situation. I currently have a ASP.NET web project, this project uses webservices to receive XML from various locations. One of the locations requires a x509 certificate in order for it to work properly. All was good until they sent us a new certificate ...more >>

Dear all, I have read that with TcpChannel under 2.0 client credential are pass throught the server remoting object. How can you then retrive from your server the passed credential issue by the client ? thnaks for help regards serge...more >>

Hi, I use the following function to validate a signed xml document with an attached X509 cert. The XML validates in .NET 2.0 but not in 1.1. Any ideas?? Thanks.. public void VerifyXmlSignature(String signedFilename) { //load signed XML document XmlDocument xmlDoc = new Xml...more >>

Hi I'm developing an application that encrypts some data using the TripleDESCryptoServiceProvider, I'm new in this topic and I don't know what is the best and secure way to distribute the keys used by this algorithm since If I left it hardcoded anyone can decompile the assemblies and obtain it....more >>

Hi I have a problem. I have a development PC in domain A and I need to develop software witch has to access Active directory in domain B. I have no problem accessing AD until dev. PC in on the same domain with the AD. But I can’t figure out how to access AD in separate domain. Help needed...more >>

Hopefully one of the RSA guru's here can help me with this one. I have a server with two sites running, one on port 80, the other on port 8080. The application I'm working with is running under the site on port 8080 and for this example I'll use the name of "test" for the virtual directory o...more >>

We have a scenario (much like everyone else I'm sure) where we have some applications that reside on the intranet, a local share, but are run from independant client machines. Some of these applications need FullTrust. It was our understanding that : The CLR will determine permissions a .N...more >>

I think I posted here once before but am going to try again. I'm a beginner. A Shields Up! scan reveals that ports listed in subject are open and indicates this is not good. I've searched everywhere for an answer. I've written to AVG. I have their security suite (anti-virus/firewall). When I ...more >>

Hi all I am fairly new to windows scheduler. I have an .exe console application that needs to be run 1st of every month. I created a scheduled task in Windows Schduler and called the .exe. The application is supposed to pull some report data and make a webservice call to sent out thi...more >>