|
Hi,
I have an ASP .NET 2.0 website connected to a SQL Server 2005 database. The site is pretty simple and stores information about staff, including salary.
What is the best way to encrypt the salary value so no-one (including myself) can ever see what...
Started by Anthony on
, 6 posts
by 6 people.
Answer Snippets (Read the full thread at stackoverflow):
You definitely need SSL to prevent sniffing people see salary data all the time.)
You ....
SSL is probably your best bet to keep someone from sniffing, but be aware that it is still possible could use each employee's unique ID as the salt.
|
|
Hello,
I am about to deploy an ASP .NET application (developed with LINQ-to-SQL).
I have taken following precautions:
Database access via user with limited access, however, since application is to access the sensitive data, I can't deprive this limited...
Started by effkay on
, 4 posts
by 4 people.
Answer Snippets (Read the full thread at stackoverflow):
An....
Encrypting the string protects agains accidental compromise of the IIS/ASP host from a non-admin account.
Since encrypting the strings in Web.Config is trivial and well supported in ASP deployment and operation, just do it.
Encrypted.
|
|
My MVC site is using integrated authentication, and we had a request to allow users to sing in as another user, like in sharepoint.
This has proved to be difficult...
I've tried to send a 401 or 403 response, but the browser won't display the login popup...
Started by David Lay on
, 4 posts
by 4 people.
Answer Snippets (Read the full thread at stackoverflow):
Maybe you can do something similar? http://stackoverflow.com/questions/1596329/integrated-windows-authentication-ssl.
Provide an kludge: redirection to SSL seems to cause a re-AuthN.
|
Ask your Facebook Friends
|
On Mon, 1 Dec 2008 07:51:32 -0600, "David C" <dlchase@lifetimeinc.com
Can anyone point me to information on how to convert an existing Net 2.0
website to SSL? We are currently developing a site that the customer wants
to use SSL and I am not ...
Started by David C on
, 6 posts
by 6 people.
Answer Snippets (Read the full thread at omgili):
If you want only SSL, you can
set up a redirect there....
I'm;NoSpamMgbworld@comcast.netNoSpamM
Get an SSL cert and add it to the site in IIS.
I just recently switched
mine over.
Anything
except get and install your SSL certificate.
|
|
I've got a string I want to encrypt, and I want to do so in a way that a "classic" ASP application and an ASP.NET 2.0 application can decrypt it. What's the best way to do it?
I've been scouring the web for different solutions. I've looked at using DPAPI...
Started by Jason Reis on
, 5 posts
by 5 people.
Answer Snippets (Read the full thread at stackoverflow):
Service over SSL from your classic ASP application and then us the same back-end library from yourYou can try to use Chilcat Crypt component in a form of an activex dll for the classic asp page everything in classic asp, then....
|
|
I have an ASP file that is trying to make a webservice request to an ASP.NET webservice running on the same server under the same virtual directory. In IIS the virtual directory is set up to disable anonymous access and "integrated windows authentication...
Started by wweicker on
, 5 posts
by 5 people.
Answer Snippets (Read the full thread at serverfault):
You need to grant the users who are authenticating to run the classic ASP application permission that you're not having a file permission issue....
Classic ASP runs impersonating the user who is authenticated to the server in the HTTP session.
|
|
I have a weird issue happening.
sometimes when i reply to an email, it sends out duplicate emails. running the latest webmail lite version and have it configured to imap gmail. basically what's happening....is it truncates part of the email text in the...
Answer Snippets (Read the full thread at afterlogic):
We have recently released an updated WebMail Lite version, it has a fix towards some specific IMAP servers which don't work with saving drafts properly; for instance, we upload a message to Drafts with some Message-ID assigned, but when we need to locate... .
|
|
I am trying the evaluation version of the IMAP component and encountered a problem while using it.
What I intend to do is to read all the messages from the inbox and move them to specific folders based on the subject and also insert them in to the database...
Answer Snippets (Read the full thread at afterlogic):
Regards,
A;ex //log
10:27:14.73] [RECV] * LIST (\HasNoChildren) "/" Sent\r\n [Total 34 bytes received.]
[10:27:14.73] [RECV] * LIST (\HasNoChildren) "... .
You can submit it via Helpdesk if it contains sensitive information .
The actual log will be helpful.
|
|
Is there a way to set the EnableSSL from the web.config?
I could set this property in code, but that wouldn't work for the Simple Mail Web Event and other classes that uses the default Smtp Server. Any ideas?
Started by holiveira on
, 5 posts
by 5 people.
Answer Snippets (Read the full thread at stackoverflow):
See http://blogs.msdn.com/vikas/archive/2008/04/29/bug-asp-net-2-0-passwordrecovery-web-control-cannot-send-emails-to-ssl-enabled-smtp-servers.aspx
Ryan port to determine if SSL is required....
Password' built in .net login controls though.
|
|
How do I go about using HTTPS for some of the pages in my ASP.NET MVC based site?
Steve Sanderson has a pretty good tutorial on how to do this in a DRY way on Preview 4 at:
http://blog.codeville.net/2008/08/05/adding-httpsssl-support-to-aspnet-mvc-routing...
Started by David Laing on
, 6 posts
by 5 people.
Answer Snippets (Read the full thread at stackoverflow):
Archive/2009/08/25/requiring-ssl-for-asp-net-mvc-controllers.aspx
He uses an ActionFilter Attribute..
|
