Search results for query: *

Hi Could you give the full stack trace for the exception?

Hi It's not possible to have two-way encryption of text that results in a fixed length ciphertext. Hash functions produce a fixed length result, but they cannot be decrypted. No .Net hash implementation meets your requirements for length. Hope this helps

Hi It may be worth trying to figure out exactly which objects are being accessed and grant access to those keys, rather than just granting admin privileges. Impersonation is another option, also. Hope this is useful

Hi Can I suggest that, instead of working with the normal file system, you try using isolated storage instead? Here's a link: http://msdn.microsoft.com/library/default.asp?url=/library/en-us/cpguide/html/cpconIsolatedStorage.asp Hope this helps

Hi WJunior This is a different error - a securitypermission instead of a fileiopermission. Could you give a more full description of the application? How is it launched from IIS, where are the files are located etc. Cheers

Hi WJunior Go to the Start/Programs/Administrative Tools/Microsoft .Net Framework Configuration. Go to the Runtime Security Policy Open the Machine node Open the All_Code code group. Change the permission set to Full Trust. What's happening is that the CLR is seeing your app as...

Hi It looks like the trust level for your web app is not allowing you to access the directory you've specified. To check this, change trust element in web.config to <trust level = "Full" /> Now run the app. If there are no errors, then we know that the trust level is stopping you from...

There are two white papers here: http://www.charteris.com/publications/whitepapers/default.asp The first is 'Cryptographic Algorithms – Guidance for Developers', and gives details of the algorithms, and also how to use CAPICOM to perform the signing. The second, 'Security Solutions Offered...

Hi The problem lies with the fact that network shares don't run with full trust in the Machine policy for Code Access Security. You'd need to use CASPOL tool to alter this, creating a new code group for your app giving it full trust. CASPOL is command line, and can be run from scripts and...

Hi Most times, I just change the url to have https:// at the beginning. Can you give more details? Cheers Chris Seary

Hi This is the relevant section from 'Building Secure asp.net applications'. Includes all the code as well. http://msdn.microsoft.com/security/default.aspx?pull=/library/en-us/dnnetsec/html/SecNetHT02.asp You may want to check out 'Improving web application security' as well. Both are...

Hi You could perform a select statement using the key for that record. select @var = count(*) from mytable where key = @key Then check the count to see whether that record exists in an if statement. The two branches of the statement would either update or insert. Look at using the EXISTS...

Hi The streamreader also has the method .ReadToEnd(). This will read the whole lot in one go. Hope this helps Chris Seary

Hi Recommendation from Microsoft on this is to use the DPAPI to store keys. Look at the pdf file 'Building Secure ASP.Net Applications' on the MSDN Security Developer Centre. The 'How To' section near the end gives all of the code that you need. Hope this helps Chris Seary

Hi Have a look at the .Net Framework Configuration Wizard (through Start/Administrative Tools). Check the Runtime Security Policy. Look at the Machine policy. Check what permissions are available for the My_Computer_Zone. Normally this gives FullTrust. If it doesn't, then this is what is...

Hi This is a code access security issue. You may need to increase the trust level for parts of your application. Is this a Windows or a Web app? Chris Seary

Hi .Net 2.0 offers an API for accessing and changing ACLs for objects. Here's a link: http://msdn.microsoft.com/security/default.aspx?pull=/msdnmag/issues/05/01/securitybriefs/default.aspx Look at the section 'System.Security.AccessControl'. Also...

Hi I'd avoid rolling your own encryption algorithm - every reference on encryption suggests avoiding this. The cryptography namespaces in .Netoffer a lot of functionality, but you have to know what you're doing. I've written a white paper that gives lots of sample code for using symmetric...

Hi Your PC needs to have a valid DNS address in the TCP/IP settings (via the Network Connections applet in Control Panel). If not, it won't find the IP address of a Domain Controller. If it doesn't find a domain controller, it can't log you on. If you use IP addresses instead of server...