|
More site info...
|
|
Forum profile page for Security on http://www.asp.net.
This report page is the aggregated overview from a single forum: Security, located on the Message Board at http://www.asp.net.
This forum profile page summarizes the general forum statistics such as: Users Activity, Forum Activity, and Top Authors, which are reported in either a table or graph below for a given reporting time period.
Additional forum profile information for "Security" on the Message Board at http://www.asp.net is also shown in the following ways:
1) Latest Active Threads
2) Hot Threads for Last Week
Warning: These statistics are generated using 'best efforts' and can experience delays and reporting errors at times. Please note that such statistics do not constitute a forum's popularity and/or exact posting volumes at any given reporting period.
|
|
|
|
|
Posting activity on Security:
|
|
Week
|
Month
|
3 Months
|
|
Threads:
|
81
|
478
|
1,580
|
|
Post:
|
147
|
971
|
3,177
|
|
|
Security Posting activity graph:
|
Top authors during last week:
user's latest post:
Delete Profile
Published (2008-11-28 03:10:00)
Hi shapper, Based on my experience, a simple way is to set the profile as NULL. For example: Context.Profile.SetPropertyValue("fields", null); If you have to delete it, you can use ProfileManager class. For example: ProfileManager.DeleteProfile(username); Thanks.
user's latest post:
aspnet_membership islockedout...
Published (2008-11-27 14:42:45)
doing this in Session_End doesn't seem to be a good idea... There can be time when Session_End won't hit depending on... how user logout or how you are managing session ... e.g. if user doesn't logout clicking your logout Button and just close the browser ... So try looking for some other alternative...check similar thread: http://forums.asp.net/t/1350981.aspx
user's latest post:
How to use Digital signature to...
Published (2008-11-27 02:48:16)
Take a look at this article, it is fairly simple to associate the signature. http://www.devx.com/dotnet/Article/19986/1954 SoapContext myContext = myService.RequestSoapContext; myContext.Security.Elements.Add(new Signature(myToken));
user's latest post:
Why is this error by using the...
Published (2008-11-27 10:58:43)
The code in CommonData is for VS2008, but it can be converted back to 2005. Please post some examples URL's that are unencrypted. E.g. http://forums.asp.net/AddPost.aspx?ReplyToPostID=2771743&Quote=False http://www.codeproject.com/info/search.aspx?artkw=PROJECT+AND+MANAGEMENT&sbo=kw&sa_ao=False&sa_us=False&sa_so=17&pgnum=2
user's latest post:
Different Users, different page!!!
Published (2008-11-27 11:14:09)
Brilliant. Thanks I have redirected the login control property to landing.aspx then inserted your code in the landing page page_load event and it works. Excellent stuff.
user's latest post:
Is developing against a non SSL...
Published (2008-11-26 14:22:00)
Just go thru this article you get a clear idea... http://weblogs.asp.net/pwilson/archive/2004/12/23/331455.aspx
user's latest post:
signout problem
Published (2008-11-27 03:59:16)
see ... for example... i have 8 pages...each derived from a master page for design. i have linkbutton 'SignOut' ... while loging in i have to provide uid and pwd as expected and if they are correct then depending on usertype the page navigation will take place... now on 3rd page i click on signout button then i should come to to the login page and if i again click on the back button it should show the login page again... i...
user's latest post:
Problem sending password...
Published (2008-11-25 16:35:52)
An update: I downloaded and installed a local smtp relay server pointing to my ISP's smtp server. Then I changed my web.config to: <system.net> <mailSettings> <smtp deliveryMethod="Network" from="myemailaddress">...
user's latest post:
How do you create a set of users...
Published (2008-11-25 00:57:01)
I would like to mark as answer however it does not display for me when i am logged in, I guess this is because I didnt start the tread in the first place. Sorry, but thanks for your help.
|
|
|
|
Latest active threads on Security::
Started 3 days, 17 hours ago (2008-11-29 05:20:13)
by justKiran
We have used the cookie. But that can be hacked easily by any user. We cant save in encrypted as we dont want to share the encryption logic. So if we store a calling page in url in web.config and checked the requested url with this value then it could be possible. However, How can we detect the calling page url to our application. Unfortunately, I found that urlreferre does not work in some ...
Started 3 days, 20 hours ago (2008-11-29 02:20:30)
by donkiely
This is normal for an Internet-facing database, and yes, someone is attempting to hack you (assuming that all these attempts aren't from your Web app). I hope that you have a VERY strong password for sa, because if you don't someone will soon control your database server. Not much you can do about this, assuming that you absolutely have to expose the SQL Server instance to the Internet. BUT, ...
Started 4 days, 11 hours ago (2008-11-28 12:13:26)
by ghassan_aljabiri
what kind of errors you got?
Started 5 days, 12 hours ago (2008-11-27 10:48:36)
by raghav_khunger
Hi, markarmitage Thanks For Ur reply I have Gone Thrugh That I ahve Also gone On this http://forums.asp.net/AddPost.aspx?ReplyToPostID=2 771702&Quote=False Where Hoe To add custom data is there along with the datasbe also But in that UserNAme password email etc are in the last of the wizard I want that to be the first not last. And I want that on single form ...
Started 4 days, 19 hours ago (2008-11-28 04:18:00)
by jlchereau
Have a look at http://jlchereau.blogspot.com/2008/11/how-to-confi gure-membership-provider.html You may also be interested in: http://www.velodoc.com http://www. memba.com
Started 1 week ago (2008-11-25 19:34:10)
by shapper
Hello, I am using a custom profile provider as follows: public class ProfileHelper : ProfileBase { [SettingsAllowAnonymous( false ), SettingsSerializeAs(SettingsSerializeAs.Binary)] public Profile.Contact Contact { get { return base [ "Contact" ] as Profile.Contact; } set { base [ "Contact" ] = value ; } } // ...
Started 4 days, 22 hours ago (2008-11-28 00:52:00)
by whooyeah
Is it possible to Authenticate on Email and Password rather than Username and Password using the Membership provider?
Started 4 days, 20 hours ago (2008-11-28 02:36:00)
by Wencui Qian - MSFT
Hi Ayomide, Please tell us the details of the enviroment. Here's an article from KB, please check whether it's the same problem: http://support.microsoft.com/Default.aspx?id=23847 7 Thanks.
Started 4 days, 21 hours ago (2008-11-28 02:17:00)
by Wencui Qian - MSFT
Hi craigbtx, It's not recommended to change the settings in web.config in runtime. As you know, modifying the machine-level and application-level will cause application restart. I suggest you to handle the SendingMail event as showed above. You could also configure all the emails in appSettings section, and then choose one of them based on the session value. Thanks....
Started 4 days, 21 hours ago (2008-11-28 02:14:00)
by king-kong--
tomasr: Drives are mapped for a specific user session, not at the machine level, from what I can remember. So although you can see the drive you mapped yourself, other users (including the one under which the COM+ application runs) won't. You're better off using a UNC to access it. Hi, I have the same requirement as the original poster. How would UNC paths overcome the problem? ...
|
|
Hot threads for last week on Security::
Started 6 days, 12 hours ago (2008-11-26 10:25:00)
by cartaysmm
I am trying to find current user but this code keeps producing nulls. I have code above asking if user is authenticated and that produces true if logged in. Can anyone shed some light on the subject for me? Do I set the currentUser somewhere in the auth cookie or something? MembershipUser currentUser = Membership.GetUser(false); if (currentUser != null)...
Started 6 days, 10 hours ago (2008-11-26 12:45:00)
by AkAlan
I have been developing a web app using a developement IIS server on our intranet but will eventually deploy to the production server which has SSL. I don't know if there will be issues I will have to deal with because of this. All my users will have windows accounts but I will be using forms based authentication because some users will access the app from the internet. Any guidance in this ...
Started 6 days, 23 hours ago (2008-11-26 00:19:00)
by satyajitd
how to signout in asp .net 3.5 and corresponding changes in web.config
Started 5 days, 16 hours ago (2008-11-27 06:53:09)
by arcalis
Hi, I have a website with a login page which is setup using the WAT. I have 2 different types of role that I need to redirect to different pages depending on their role. I.E. login page -> IF User 1 -> member1.aspx -> IF User 2 -> member2.aspx How do I redirect them to different pages based on their login? Also is it possible to remove the ...
Started 5 days, 12 hours ago (2008-11-27 10:48:36)
by raghav_khunger
Hi, markarmitage Thanks For Ur reply I have Gone Thrugh That I ahve Also gone On this http://forums.asp.net/AddPost.aspx?ReplyToPostID=2 771702&Quote=False Where Hoe To add custom data is there along with the datasbe also But in that UserNAme password email etc are in the last of the wizard I want that to be the first not last. And I want that on single form ...
Started 1 week, 2 days ago (2008-11-23 07:22:31)
by calver
Hello, I'm new here and new to ASP.NET and VS 2008. I'm working through the video tutorials on Security and can't send the password reminder email. I get this error message: Syntax error in parameters or arguments. The server response was: Syntactically invalid EHLO argument(s) I've included this section in my web.config file: <system.net> <mailSettings> <smtp ...
Started 1 week ago (2008-11-25 13:42:50)
by guru_sarkar
your aspnet tables should be in aspnetdb under app_date folder --- provided you are using default connectionstrings settings... Try to refresh your app_data folder ... Can you share your web.config ....connectionStrings section
Started 3 months, 3 weeks ago (2008-08-10 11:51:00)
by haggis999
I am very new to ASP.NET 3.5 and am currently struggling to create my first ASP.NET website using VWD, with all coding in VB. This is a migration of an existing application that already has about 1000 registered users. I plan to use the built-in ASP.NET Membership system, but I don't want these existing users to create new logins on the ASP.NET system as this would lead to data duplication ...
Started 6 days, 12 hours ago (2008-11-26 10:59:00)
by Hockeynut
We have quite a few apps which have users based at different schools. Some of these users work at more than 1 school. Which complicates the applications and means we have to provide the method for them to switch the point of view (of which school’s version they are looking at). 1 approach we used was to usually store the school number in the membership user profile area. However, that means ...
Started 5 days, 15 hours ago (2008-11-27 08:01:43)
by TATWORTH
Which version of Visual Studio are you using? I suggest that you also try the methods at: http://www.codeproject.com/KB/dotnet/EncryptionAnd QueryStrings.aspx http://www.codeproject.com/KB/aspnet/TamperProofQu eryString.aspx http://www.codeproject.com/KB/aspnet/ScrambleQuery Strings.aspx It would be of assistance if you could post some of the unencrypted query strings that do not ...
|
|
