Articles, News, and Resources about ASP.NET Security
Posted in Uncategorized on Jul 28th, 2007
In this installment of geekSpeak, security guru Keith Brown discusses how you can address security concerns in your Web applications. Keith is an accomplished author and trainer for Pluralsight.
See the original post here: Web Application Security with Keith Brown
Posted in access, application, bconfig, config, enable, group, myappusers, rolesdomain, users on Jul 27th, 2007
Next I want to enable access to the > > application for this group and deny access to all other users. > > I have tried the following in my web.config file: > > > > …
View original here: ASP.Net Role based access
access application bconfig config enable group […]
Posted in ability, application, aspect, aspnet, development, framework, improvement, launch, major, personalizable on Jul 26th, 2007
ASP.NET 2.0 was a major improvement upon web development everywhere. One very powerful aspect of ASP.NET 2.0 is the ability to make your web application personalizable using the Web Part framework. With the launch of MOSS (Microsoft …
Read more here: Understanding ASP.NET Web Parts
ability application aspect aspnet development framework […]
Posted in administrator, application, change, contact, grant, level, permission, policy, security, trust on Jul 26th, 2007
Description: The application attempted to perform an operation not allowed by the security policy. To grant this application the required permission please contact your system administrator or change the application’s trust level in the …
Go here to see the original: Configuring an Asp.net IIS site to run off a network share
administrator application change […]
Posted in aspnet, automated, debugging, pingback, security, testing, tools on Jul 24th, 2007
Pingback from Updated: List of AJAX Automated Testing and Debugging Tools | ASP.NET Security.
Here is the original: Updated: List of AJAX Automated Testing and Debugging Tools | ASP …
aspnet automated debugging pingback security testing toolsaspnet, automated, debugging, pingback, security, testing, tools
Posted in acquired, error, exception, execution, permissions, request, server, stack, trace, unhandled on Jul 24th, 2007
Server Error in ‘/’ Application. Required permissions cannot be acquired. Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error …
Go here to see the original: ASP.NET 2.0 - Could not load file or assembly: Medium Trust issue.
acquired error […]
Posted in application, applications, aspnet, authentication, based, bbased, commonly, issues, security, vulnerabilities on Jul 23rd, 2007
In this second part of a two-part series, you will learn about application security issues related to authentication and authorization, as well as five vulnerabilities commonly found in ASP.NET web-based applications. …
The rest is here: Top 10 Application Security Vulnerabilities in Web.config Files …
application applications aspnet authentication based bbased […]
Posted in application, applications, aspnet, authentication, based, commonly, issues, security, vulnerabilities, webbased on Jul 23rd, 2007
In this second part of a two-part series, you will learn about application security issues related to authentication and authorization, as well as five vulnerabilities commonly found in ASP.NET web-based applications. …
View original here: Top 10 Application Security Vulnerabilities in Web.config Files â?¦
application applications aspnet authentication based commonly […]
Posted in aspnet, interface, justified, paranoia, question, security on Jul 22nd, 2007
pretty much a long shot in this age of (justified) security > paranoia…. > > So if that’s a “no”, my real question is - is it possible to get > around this using some sort of raw web interface to the data (most > likely from ASP.NET) …
Here is the original: Accessing hosted SQL […]
Posted in automated, automation, cross, froglogic, platform, professional, security, sprajax, squish, threats on Jul 17th, 2007
Cost: Free; Sprajax - Although not a test automation tool, Sprajax allows AJAX applications to be scanned for potential security threats. Cost: Free; Squish - froglogic Squish is a professional cross platform automated GUI and Web …
Read more from the original source: Updated: List of AJAX Automated Testing and Debugging Tools
automated automation cross […]
Check Cookie Sql injection.
Read more from the original source: Asp.net Security Issues
check cookie injectioncheck, cookie, injection
Posted in aspnet, aspnets, authentication, based, classic, forms, integrate, people, security, specifically on Jul 15th, 2007
One of the questions I am often asked is “How can I integrate ASP.NET security with Classic ASP other non-ASP.NET URLs?”. Specifically, people want to know if they can integrate ASP.NET’s Forms Authentication, Role Based Security, …
Original post: Tip/Trick: Integrating ASP.NET Security with Classic ASP and Non …
aspnet aspnets authentication based […]
Posted in access, account, administrators, application, applications, granted, imposes, permissions, security, systems on Jul 11th, 2007
Systems administrators can now use code access security to further lock down the permissions granted to ASP.NET Web applications and Web services. Although the operating system account under which an application runs imposes security …
Read more: .NET Interview Question With Answer - Part1
access account administrators application applications granted imposes […]
Posted in aspnet, attacker, bypass, remote, restrictions, security, unauthorized, vulnerability on Jul 11th, 2007
Microsoft ASP.NET contains a vulnerability that can allow a remote attacker to bypass security restrictions and gain unauthorized information.
Go here to read the rest: Microsoft ASP.NET security bypass vulnerability
aspnet attacker bypass remote restrictions security unauthorized vulnerabilityaspnet, attacker, bypass, remote, restrictions, security, unauthorized, vulnerability
Posted in access, application, aspnet, certificate, credentials, impossible, needed, problem, process on Jul 10th, 2007
Here comes our problem; when trying to access this certificate through the asp.net application, we run into a problem - It’s impossible, because the process that runs the web application is ASPNET and doesn’t has the needed credentials …
View original post here: Hosting .NET Assembly in COM+ Situation
access application aspnet certificate […]