Life, Surf, Code and everything in between
White Papers
|
Free Tools
|
Products
|
Message Board
|
News
|
Web Log Home
Site Home
Subscribe to Feed
Contact
Search
Posts - 1217
Comments - 16108
Rick's Sites
Rick's FoxPro Web Log
CodePaste.net
Rick's Photos
Rick's Music
Find this content useful? Consider making a small donation to show your support.
Now Reading
jQuery Mobile
by Jon Reid
The Definitive Guide to MongoDB: The NoSQL Database for Cloud and Desktop Computing
by Eelco Plugge, Tim Hawkins, Peter Membrey
jQuery in Action, Second Edition
by Bear Bibeault, Yehuda Katz
Twitter Status
WebLog Posts in Category Security
Wishful Thinking: Why can't HTML fix Script Attacks at the Source?
April 14, 2012 @ 5:49 pm
I'm dealing with user HTML input in a Web application today and again I curse over the complexities involved in sanitizing this html. So today I started dreaming about a possible alternative...
15 comments
Loading Assemblies off Network Drives
March 22, 2011 @ 4:24 pm
Remote loading of assemblies and CAS policy in .NET have always been hassle and although .NET 4.0 improves security, lightning up rules to be on par with Win32 applications, for COM Interop and custom runtime hosting old rules still apply. Luckily there's some help in the form of a new configuration switch that allows overriding remote loading of assemblies.
3 comments
Request Limit Length Limits for IIS’s requestFiltering Module
October 28, 2010 @ 10:57 pm
Got bit during an update today by code that ran just fine on my dev machine and failed on OpenID logins on the live machine. Turns out RequestFiltering was not allowing the long OpenID urls to be served, a problem that's easy to hit with the default settings in Windows Server 2008.
1 comment
SSL Certificate Renewal Pain
January 21, 2009 @ 12:49 am
I ran into some problems this time around renewing my SSL certificate for west-wind.com and it looks like the problem is related to how IIS 7 handles renewals. After all the years of problems with certificate renewals in IIS I figured that by now Microsoft would have this nailed, but in the end only a completely new certificate request managed to work for me.
20 comments
Non ASPX Extensions and Authentication in the IIS 7 Integrated Pipeline
May 23, 2008 @ 3:54 am
Ran into an issue where IIS 7's integrated pipeline exhibits different behavior authenticating non ASPX extensions. Looks like IIS 7 only authenticates mainline files resulting in Context.User==null or Context.User.Identity.IsAuthenticated==false. For example hitting CustomHit.axd doesn't provide user credentials where an ASPX url does.
12 comments
MS Tests failing due to Security Errors
March 17, 2008 @ 12:53 pm
Ran into an odd problem today while testing with a third party DLL. My unit tests failed to run complaining that the third party DLL was not trusted. Turns out the problem is related to the security tags applied to the file when it was downloaded and installed directly of a Web download.
2 comments
Watch out for XmlDocument.PreserveWhitespace when dealing with Digital Signatures
March 03, 2008 @ 12:42 pm
When creating digital signatures of XML documents its crucial that the Xml document settings on signing match the document settings that are expected for validating signatures. I ran into a problem where our signatures were failing with a vendor's site, due to the PreserveWhitespace property settings on our end and on the vendor's parser being mismatched.
2 comments
Digitally Signing an XML Document and Verifying the Signature
February 23, 2008 @ 3:41 am
Signing an XML document and then validating the digital signature of the document doesn't involve a lot of code - once you know how it works, but arriving there is quite the journey. This post describes setting up a certifcate for testing, signing an XML document with the Private key and then validating it with the Public key.
24 comments
Archives
May, 2012 (3)
April, 2012 (8)
March, 2012 (7)
February, 2012 (3)
January, 2012 (4)
December, 2011 (6)
November, 2011 (4)
October, 2011 (4)
September, 2011 (3)
August, 2011 (2)
July, 2011 (3)
June, 2011 (1)
May, 2011 (4)
April, 2011 (5)
March, 2011 (5)
February, 2011 (3)
January, 2011 (6)
December, 2010 (2)
November, 2010 (3)
October, 2010 (1)
September, 2010 (2)
August, 2010 (2)
June, 2010 (2)
May, 2010 (3)
Categories
ASP.NET (221)
.NET (85)
Personal (68)
jQuery (55)
JavaScript (54)
AJAX (51)
Visual Studio (49)
CSharp (40)
HTML (35)
LINQ (32)
IIS (30)
ASP.NET (28)
Vista (28)
WCF (27)
Windows (22)
Localization (21)
FoxPro (21)
Web Services (16)
COM (14)
Microsoft AJAX (13)
MVC (12)
WPF (12)
ADO.NET (12)
XML (10)
CSS (9)
Web Connection (8)
Security (8)
Silverlight (8)
Sql Server (7)
West Wind Ajax Toolkit (7)
IIS7 (7)
HTTP (7)
C++ (6)
Web Api (6)
Html Help Builder (5)
HTML5 (5)
Hardware (5)
ISV (4)
Live Writer (4)
Bugs (4)
WebLog (4)
Software Development (4)
Office (4)
Source Control (3)
Razor (3)
Windsurfing (3)
DataBinding (3)
Help (3)
Help Builder (3)
IIS7 (3)
Installation (2)
Internet Explorer (2)
Conferences (2)
ADO.NET (2)
Visual Studio (2)
WinForms (2)
Tools (2)
Web Design (2)
RegEx (2)
RSS (2)
Networking (2)
Maui (2)
Speaking (2)
Threading (1)
SmartPhone (1)
Web Deployment Projects (1)
Travel (1)
Utilities (1)
wwHoverPanel (1)
Addins (1)
Control Development (1)
Dynamic Types (1)
FireFox (1)
iPhone (1)
Graphics (1)
JSON (1)
© Rick Strahl, West Wind Technologies, 2005 - 2012