Home All Groups Group Topic Archive Search About

.NET Security

microsoft.public.dotnet.security
Score Client Authentication
bwardulv - 4 Mar 2006 1:24 AM - 7 messages
Hello, I received a certificate from a customer to access their web service.  I installed the certificate which ends up in the "current user - other people" store when you select "Automatically select the certificate store based on the type of certificate".  The certificate was issued by a third party. I ...
Score Need a secure web based database application setup recommendation.
rjames.clarke - 3 Mar 2006 2:33 PM - 4 messages
I am writing an application that is web based. I am planning to use .NET with SQL Server as the database. The client will be desktop, and not browser based. It will allow multiple companies to access their data from central ...
Score authentication best practices
Perecli Manole - 3 Mar 2006 1:20 PM - 3 messages
I have a "click-once" windows forms application distributed to many clients. This app uses web services behind the scenes to populate sensitive company data. I want to make this application behave similarly to a web application in the following ways: ...
Score .NET 1.1 security policies broke after installing .NET 2.0
Perecli Manole - 3 Mar 2006 1:09 PM - 6 messages
I have an ActiveX control written in .NET 1.1 imbedded in several web pages on our Intranet. I used .NET 1.1 security policies to basically make this control safe to all the client machines in our domain. When .NET 2.0 came ...
Score HttpWebRequest using Certificates
Josef Brunner - 3 Mar 2006 8:22 AM - 8 messages
Hi everybody, my VB.NET (Framework 2.0) client application has to do a HttpWebRequest (for reading web-pages and downloading files) on a web server. The server uses a self-signed certifiacte and the client application should also use a ...
Score File IO Permissions
Aaron Sellers - 3 Mar 2006 12:05 AM - 5 messages
Hi all,    I am trying to write a piece of code that will allow me to check if the current user has permission to access (read, write, etc.) a certain folder before I try to access it for the read, write, etc.  I tried to use ...
Score Security Error over LAN
Mike Griffin - 2 Mar 2006 9:49 PM - 5 messages
I wrote an internal tool for our program using .NET 1.1 C# that accesses MS Access DBs on the LAN and an INI file in the same directory as the app. Before we had a change, I was able to get the app to work by utilizing ...
Score Resetting AD Password
Rik Brooks - 2 Mar 2006 6:23 PM - 2 messages
I'm writing an ASP.NET app using .NET 2.0. I'd like to be able to allow my help desk personell reset the AD password for a user in case that user forgets their password. I need to be able to do this without a password ...
Score How do I map between UnicodeEncoding in .net 1.1 and 2.0 (serious issue)
Morten Petteroe - 2 Mar 2006 2:44 PM - 3 messages
Hi, I am having big problems using unicode encoding (even when i specifically make it UTF-8 instead of UTF-16) when generating hashes. I use hashes for checking requests for tampering, as well as hashing password for storing in a database. ...
Score Private key generation
Francesco - 2 Mar 2006 10:31 AM - 9 messages
Hi,   I've read that in a certificate request the private key is generated by CA and then sent to requester. ([link]) Is this correct? ...
Score Does Web sites which designed by .NET support Run as feature?
Microlong® - 2 Mar 2006 8:43 AM - 2 messages
Firstly, I have security group which named SGA. Secondly, I have a account which named TEST. It is a doman account. I developed a Web site which integrated Windows Authentication and I want to all users that should join in SGA can access this web site. After end user ...
Score Problem with ClickOnce and App_Data folder
Nhu Huynh - 2 Mar 2006 2:13 AM - 2 messages
Hi, We have a medium .NET 2.0 Windows Application (WinForm) project which has an App_Data subfolder in it. Now we want to deploy that WinForm app using ClickOnce with Web deployment strategy. Our problem is once the project is published on the Web server, there is no ...
Score Separate authorization from login
Marc - 1 Mar 2006 1:17 PM - 3 messages
A common computer will be used by multiple users with different levels of trust and authorization to run an application. Although it will be a WinForms app the front end security will be more like a web app.  A person will go up ...
Score WebClient using Certificate Auth
Josef Brunner - 1 Mar 2006 10:05 AM - 5 messages
Hi everybody, we need to have our application access a web server and download files etc. from it. Is there a way that the WebClient object can use a client certificate to authenticate against the web-server? If not, what would be "the second best" way to do client authentication? (I ...
Score Exception in mscorlib.dll
Raul Sandoval - 1 Mar 2006 4:04 AM - 2 messages
Help me please: I have an Windows .net application that moves a file from subdirectory, this file is an image that is showed by picturebox control, but sometimes send me this: Uncontroled Exception type 'System.IO.IOException' in mscorlib.dll ...
Score protect physical file
beachboy - 1 Mar 2006 2:26 AM - 2 messages
Hello all, I have a private section for members, and all page contents are protected by login. Is any way/method I can protect all files (doc, jpg, pdf) from physical access, e.g: user can type the full path in address bar on IE, then they can ...
Score Hosted WinForms Controls and CAS
Shawn Wildermuth - 27 Feb 2006 10:57 PM - 3 messages
I am workign with a small intranet app for a customer and we've decided to use Hosted WinForms controls for several really complicated code we have. I can host the controls fine (much easier than I thought actually).  But ...
Score Permissions on dynamically loaded assembly?
Jesper - 27 Feb 2006 10:56 PM - 2 messages
I've created an app with a plugin structure which works if I trust the plugin-author. Next I want to allow untrusted plugins to run under strict access conditions. I'm already loading the plugins into a secondary AppDomain, and I can set ...
Score Using RSA public keys exported from Java or OpenSSL in .NET
Mitch Gallant - 27 Feb 2006 6:14 PM - 3 messages
A number of folks have asked about using exported keys from either OpenSSL (PEM or otherwise) or Java 2 (PublicKey.getEncoded()) from .NET 1.1 or higher. It is possible to use various versions of Pinvoke to capi for this, but it is also possible ...
Next » 2 3 4 5 6 7 8 9 10