Home All Groups Group Topic Archive Search About

.NET Security

microsoft.public.dotnet.security
Score ClickOnce and remembering permissions granted
Mitch Gallant - 24 Mar 2006 11:19 PM - 8 messages
Are there any public examples of applications deployed by ClickOnce on the web? (preferably ones that have the deployoment manifest Authenticode-signed). Before deploying a few of my .NET 2 apps that way, I want to see what the GUI user experience looks like. ...
Score Win Server 2003 permission denied
Jim Brandley - 24 Mar 2006 9:43 PM - 5 messages
Particulars: Wn Server 2003, DotNet 1.1 IIS 6 I have a web application that needs to determine a UNC of a file on the web server to send to another application server. I have developed two solutions, one using WNetGetUniversalName, and the other using NetShareEnum. ...
Score Newby question on digital signature
Ruben - 24 Mar 2006 7:00 PM - 3 messages
Hi, I need to digitally sign an XML document. I already hashed the string to be signed, but my problem is the private key is provided to my user in a "*.key" file (PKCS8), so my question is: how should I extract the private key ...
Score Tightening the default CAS policy
Kurt - 24 Mar 2006 6:47 PM - 14 messages
One thing I noticed in first release of .NET is that programs stored on My Computer were granted fulltrust regardless its location effectivly equivelant to an unmanaged application.  My thought is that assemblies in temp directories, my documents, etc, can in general be assumed to have come from a ...
Score How do I deistinguis between a user and a group/role
AdrianDams - 24 Mar 2006 5:26 PM - 4 messages
I have an application in which I would like to add user accounts into an object. The user gets to type in the user they want added. I only want to do this for user accounts and not roles/groups. I am looking in ...
Score Identifying group memberships for users authenticated with AD Trus
Yvan B. - 23 Mar 2006 7:46 PM - 2 messages
I have three Active Directory domains across two forests, Dom1 and Dom2 are in one forest, while Dom3 is in another.  There are bidirectional trusts between Dom1 and Dom2, and there is a one way trust from Dom2 to Dom3. ...
Score SqlClientPermission
Peter Ramsebner - 23 Mar 2006 4:20 PM - 3 messages
Hi, i want to run my application from a network share. With the .Net Configuration Tool i changed the permissions of the localIntranet_zone to FullTrust. Without success: "The application attempted to perform an operation not allowed by the security policy.The operation required the SecurityException. To grant this ...
Score Assembly Trust
Elio Gonzalez - 23 Mar 2006 3:00 PM - 2 messages
Hi,     I'm currently deploying a 1.1 .net dll assembly which is installed on a shared folder on a file server along with a legacy application.  The clients run the .exe from the server.  The .exe calls the .net .dll via ...
Score bad encryption
Erez Mor - 23 Mar 2006 2:34 AM - 3 messages
hello experts i'm new to encryption so please... i think i've tried every piece of code out there that claims to encrypt/decrypt files the common thing about them all(and that is strange...) is that the proccess changes the file (in fact it adds 16 bytes to it, no ...
Score How do I configure the CA in win 2003 server?
Parvez - 22 Mar 2006 9:34 AM - 3 messages
I need to configure a web server with CA and produce the public key .I have got no idea on doing it .Later i will have to send files from asp.net with digitaly signatured. I need help on this particular topic. ...
Score are System.Data.SqlClient.SqlConnection thread safe? can many threads share a System.Data.SqlClient.
Daniel - 22 Mar 2006 5:59 AM - 3 messages
are System.Data.SqlClient.SqlConnection thread safe? can many threads share a System.Data.SqlClient.SqlConnection instance without any synchronization? ...
Score GSSAPI bindings for C#/.NET
Ian - 21 Mar 2006 8:55 PM - 3 messages
All, I was able to find an IETF document proposing some specifications for GSSAPI C# bindings ([link]), but I was unable to find any suitable implementation.  The goal is to ...
Score Least Privilege User Accounts
doug - 20 Mar 2006 9:04 PM - 4 messages
I need to modify my application so that my users don't have to always login as an Administrator on the machine. Currently we store data for the application where the application was installed on the machine (c:\program files\[product name]\xxx). This works fine except that in order to run the ...
Score Online Only Digital Signature
James Pemberton - 20 Mar 2006 6:27 PM - 11 messages
I am trying to deploy an application to our application server using Clickonce.  I was hoping not to have to install the application on every Citrix server that our users access, but utilize the Online Only function to actually run the application from the application server.  I have created a ...
Score Windows Security Roles
Henrik Skak Pedersen - 20 Mar 2006 4:30 PM - 6 messages
Hi, We are creating a application where we until now has been using AzMan for authentication. We are now looking at alternatives, because we have some problems with AzMan, eg ClickOnce, Windows 2003 AD Domain level. We think that we are able to shift to only be using AD Security groups, ...
Score Role based security flaw?
Andy - 20 Mar 2006 4:19 PM - 10 messages
Hi all, I'm implementing role based security, but I keep having this nagging feeling that it may not be as secure. Using role based security to classes / methods, whats to stop a malicious client from creating their own prinicpal that answers yes to ...
Score Best option for file encryption?
Jen Espana - 20 Mar 2006 4:11 PM - 2 messages
Hi All, This is my first time dealing with data and file encryption over the web and was hoping someone could lend a helping hand. My client has the following requirements. They wish to allow their users to upload files (xls, xml, and ...
Score Digital Signaturing
Parvez - 20 Mar 2006 2:55 PM - 4 messages
I need help for making an asp.net app where a USER uploads his file to a Location.While uploading it should be digitaly signed........... At the server the signature has to be verified....... I need some light into this issue... ...
Score Login failed for user ''. The user is not associated with a trusted SQL Server connection.
CLarkou - 20 Mar 2006 1:50 PM - 20 messages
My machine has Win XP and IIS 5.1. I installed Visual Studio 2005 without SQL Express 2005. SQL Server 2005 is installed on another machine with Win 2003. I created a Web Site in .NET VB. I created a connection with my SQL ...
Score internet explorer 6 sp2
bunnyrabbitt - 19 Mar 2006 5:36 AM - 3 messages
I can not get into a credit card site because it says I do not have 128-bit encryption on my browser.  I updated to internet explorer 6 sp2 from the internet. What could be my problem? ...
Next » 2 3 4 5 6 7 8 9 10