tagged [security]
iOS9 getting error “an SSL error has occurred and a secure connection to the server cannot be made”
iOS9 getting error “an SSL error has occurred and a secure connection to the server cannot be made” Since I upgraded my existing project with iOS 9, I keep getting the error : > An SSL error has occur...
- Modified
- 9 Feb at 01:35
How to remove ASP.Net MVC Default HTTP Headers?
How to remove ASP.Net MVC Default HTTP Headers? Each page in an MVC application I'm working with sets these HTTP headers in responses: How do I prevent these from showing?
- Modified
- 25 May at 21:47
Best Practice ASP.NET Membership: User tables in the same datastore?
Best Practice ASP.NET Membership: User tables in the same datastore? Is it better to extend my business database with the tables of the ASP.NET Membership Security model. Or should I have a different ...
- Modified
- 16 Feb at 13:53
How do I make the manifest of a .net assembly private?
How do I make the manifest of a .net assembly private? What should I do if I want to release a .net assembly but wish to keep its internals detailed in the manifest private (from a utility such as [il...
- Modified
- 8 Aug at 17:1
How do you configure HttpOnly cookies in tomcat / java webapps?
How do you configure HttpOnly cookies in tomcat / java webapps? After reading Jeff's blog post on [Protecting Your Cookies: HttpOnly](http://www.codinghorror.com/blog/archives/001167.html). I'd like t...
When would you use SSL for a website?
When would you use SSL for a website? Quite simply, what is the criteria a website must meet for it to need SSL certificate? Website is not ecommerce but will take user information, contact details an...
C#.NET: Acquire administrator rights?
C#.NET: Acquire administrator rights? Is it possible in a C#.NET application to request administrative rights on a Windows 7 PC? I want to be able to deploy the application via Click Once and have use...
- Modified
- 27 Aug at 11:0
How to create a password reset link?
How to create a password reset link? Which way would you suggest to create a password reset link in `MVC` and `C#`? I mean, I'll create a , right? How do I encode it before to sending to user? Is good...
- Modified
- 25 Sep at 00:5
How to prevent Iframe hack
How to prevent Iframe hack my site is hosted in lunarpage and it geting hacked in from few month. i have done all things some of site saying (changing password like). finally 2 weeks ago i have blocke...
Who should own the private key used to sign a .NET assembly when its project is open-source?
Who should own the private key used to sign a .NET assembly when its project is open-source? More specifically, a class library assembly. My initial thoughts: - - - Sure, you could just not sign the a...
- Modified
- 7 Jan at 15:51
How to securely save username/password (local)?
How to securely save username/password (local)? I'm making a Windows application, which you need to log into first. The account details consist of username and password, and they need to be saved loca...
How can I rename default session cookie names in servicestack
How can I rename default session cookie names in servicestack ServiceStack has the default cookie names "ss-id" "ss-pid" and "ss-opt" defined in SessionFeature.cs Is there a way to change the default ...
- Modified
- 21 Oct at 13:49
How to obtain the location of cacerts of the default java installation?
How to obtain the location of cacerts of the default java installation? I am looking on how how to obtain the location of `cacerts` of the default java installation, when you do not have `JAVA_HOME` o...
Encrypt password in configuration files
Encrypt password in configuration files I have a program that reads server information from a configuration file and would like to encrypt the password in that configuration that can be read by my pro...
- Modified
- 26 Jan at 23:44
Why is char[] preferred over String for passwords?
Why is char[] preferred over String for passwords? In Swing, the password field has a `getPassword()` (returns `char[]`) method instead of the usual `getText()` (returns `String`) method. Similarly, I...
Passing credentials to service stack rest api through angularJs and $http.get
Passing credentials to service stack rest api through angularJs and $http.get I have a service stack web service with the CorsFeature enabled. I am calling a service through AngularJS's $http.get meth...
- Modified
- 18 Oct at 06:47
How are ssl certificates verified?
How are ssl certificates verified? What is the series of steps needed to securely verify a ssl certificate? My (very limited) understanding is that when you visit an https site, the server sends a cer...
- Modified
- 16 Oct at 20:6
Is it ever ok to store password in plain text in a php variable or php constant?
Is it ever ok to store password in plain text in a php variable or php constant? As per question, is it safe to store passwords on php pages such as If the users can't see it, it's safe, right? EDIT: ...
How do you implement authentication in servicestack.net
How do you implement authentication in servicestack.net I'm investigating servicestack.net - but it's examples and articles don't seem to cover authentication - is this something handled by servicesta...
- Modified
- 6 Jun at 19:45
What’s the purpose of the HTML "nonce" attribute for script and style elements?
What’s the purpose of the HTML "nonce" attribute for script and style elements? W3C says there is a new attribute in HTML5.1 called `nonce` for `style` and `script` that can be used by the Content Sec...
- Modified
- 5 Mar at 15:14
How does the SQL injection from the "Bobby Tables" XKCD comic work?
How does the SQL injection from the "Bobby Tables" XKCD comic work? Just looking at: ![XKCD Strip](https://i.stack.imgur.com/G0ifh.png) [https://xkcd.com/327/](https://xkcd.com/327/) What does this SQ...
- Modified
- 21 Mar at 21:26
Docker and securing passwords
Docker and securing passwords I've been experimenting with Docker recently on building some services to play around with and one thing that keeps nagging me has been putting passwords in a Dockerfile....