tagged [security]
Do the access levels and modifiers (private, sealed, etc) serve a security purpose in C#?
Do the access levels and modifiers (private, sealed, etc) serve a security purpose in C#? I've seen that you can manipulate [private and internal members using reflection](http://www.codeproject.com/K...
Implementing secure, unique "single-use" activation URLs in ASP.NET (C#)
Implementing secure, unique "single-use" activation URLs in ASP.NET (C#) I have a scenario inwhich users of a site I am building need the ability to enter some basic information into a webform without...
- Modified
- 2 Jun at 05:37
When will C# AES algorithm be FIPS compliant?
When will C# AES algorithm be FIPS compliant? Right now the only way I can get the [RijndaelManaged](http://msdn.microsoft.com/en-us/library/system.security.cryptography.rijndaelmanaged.aspx) algorith...
- Modified
- 3 Jun at 21:45
How do I use SecureString securely?
How do I use SecureString securely? All of the examples I have seen end up converting a SecureString back to a standard string before using it, defeating the object. What's a good way of using a secur...
MSTEST PrincipalPermission
MSTEST PrincipalPermission How do you unit test code decorated with the PrincipalPermission attribute? For example, this works: ``` class Program { static void Main(string[] args) { AppDomain...
- Modified
- 9 Jul at 20:21
C# How to determine if HTTPS
C# How to determine if HTTPS How do I determine and force users to view my website using HTTPS only? I know it can be done through IIS, but want to know how its done programmatically.
How to quickly retrieve tags in array from string?
How to quickly retrieve tags in array from string? I need to place the data into an array (). What is a (stripping html, special chars)?
- Modified
- 21 Jul at 23:8
Securing your Data Layer in a C# Application
Securing your Data Layer in a C# Application I was thinking about how to secure the Data Layer in a C# Application, the layer could in this case be either a LINQ to SQL Model Diagram stored with the A...
- Modified
- 1 Aug at 09:7
Is there a reason why software developers aren't externalizing authorization?
Is there a reason why software developers aren't externalizing authorization? The value proposition of externalizing identity is starting to increase where many sites now accept OpenID, CardSpace or f...
How to prevent Iframe hack
How to prevent Iframe hack my site is hosted in lunarpage and it geting hacked in from few month. i have done all things some of site saying (changing password like). finally 2 weeks ago i have blocke...
C#. How to programmatically grant User Log On as a Service
C#. How to programmatically grant User Log On as a Service I've searched through the internet, but haven't found any solution in c#. Does anybody know how to give user right to log on as a Service in ...
- Modified
- 17 Aug at 08:34
WCF UserName authentication and fault contracts
WCF UserName authentication and fault contracts I have a WCF service configured to use custom UserName validation via the overriden Validate() method of the System.IdentityModel.Selectors.UserNamePass...
- Modified
- 24 Aug at 14:28
.NET Assembly Plugin Security
.NET Assembly Plugin Security I have used the following code in a number of applications to load .DLL assemblies that expose plugins. However, I previously was always concerned with functionality, rat...
- Modified
- 29 Aug at 15:41
What's the minimal set of characters I need to filter before passing a string to a system call?
What's the minimal set of characters I need to filter before passing a string to a system call? Assume that the following Perl code is given: ``` my $user_supplied_string = &retrieved_from_untrusted_u...
How can I set the Secure flag on an ASP.NET Session Cookie?
How can I set the Secure flag on an ASP.NET Session Cookie? How can I set the Secure flag on an ASP.NET Session Cookie, so that it will only be transmitted over HTTPS and never over plain HTTP?
- Modified
- 18 Sep at 06:29
How do I check whether File.Delete() will succeed without trying it, in C#?
How do I check whether File.Delete() will succeed without trying it, in C#? In C#, System.IO.File.Delete(filePath) will either delete the specified file, or raise an exception. If the current user doe...
- Modified
- 18 Sep at 12:5
Is there a right way to manipulate GoogleAppEngine security permissions?
Is there a right way to manipulate GoogleAppEngine security permissions? I have a GoogleAppEngine application that is required to connect to another localhost server, but when I'm trying to do this fr...
- Modified
- 21 Sep at 13:30
What technology problems arise from creating a markup language for email?
What technology problems arise from creating a markup language for email? I am wondering what technology problems arise from associating a markup language to email? Without examining the language let ...
- Modified
- 7 Oct at 04:18
PHP Source Encryption - Effectiveness and Disadvantages
PHP Source Encryption - Effectiveness and Disadvantages I have some PHP source code that I'm hosting with hosting company XYZ. I'm using a PHP encryption software like Zend Guard or ionCube to protect...
- Modified
- 11 Oct at 20:3
Are HTTP cookies port specific?
Are HTTP cookies port specific? I have two HTTP services running on one machine. I just want to know if they share their cookies or whether the browser distinguishes between the two server sockets.
Spring security 2.0.5. custom login form. Cannot see errors in language other than English
Spring security 2.0.5. custom login form. Cannot see errors in language other than English I've got my Spring Security custom login form working. It displays errors if the user has input bad credentia...
- Modified
- 28 Oct at 11:5
Launch local folder from XPSP2+ / IE8
Launch local folder from XPSP2+ / IE8 We've got an intranet which normally serves all info/documents that appl to the whiole company (employee handbooks, minutes, etc...) Most of these work by having ...
- Modified
- 3 Nov at 10:41
Implementation of "remember me" in code igniter
Implementation of "remember me" in code igniter How do i remember sessions, even after browser is closed. is there any alternative than extending expire time of cookies. i am using code igniter
- Modified
- 10 Dec at 19:30
Who should own the private key used to sign a .NET assembly when its project is open-source?
Who should own the private key used to sign a .NET assembly when its project is open-source? More specifically, a class library assembly. My initial thoughts: - - - Sure, you could just not sign the a...
- Modified
- 7 Jan at 15:51
When would you use SSL for a website?
When would you use SSL for a website? Quite simply, what is the criteria a website must meet for it to need SSL certificate? Website is not ecommerce but will take user information, contact details an...