how to secure our web site no any hacking chance to any one
View Complete Post
Security is one of the most important factors in the future growth of e-businesses. Making sure that communications remain secure between customers and the Web server is a critical issue. Secure Sockets Layer (SSL) is the standard that secure Web sites are built upon today. This article presents an overview of SSL-based Web security, explaining such fundamental concepts as digital certificates and their distribution, encryption, and the proper configuration of Microsoft Internet Information Services (IIS). Acquiring a certificate, installing it, and configuring IIS for SSL are outlined in a step-by-step process.
MSDN Magazine April 2001
in somewhat of a twist to the previous kb 943280 I have clients accessing my wss 3.0 site over ssl.
they attempt to go into their document libraries and are able to receive the ms type documents and their associated icons show up.
however in attempt to get to the pdf documents they're asked to login again, and if they bypass the login they can access the pdf file fine, it just doesn't draw the pdf icon.
I do have the icon correctly installed, for me as site owner the icon displays fine and I do not get asked to login again.
What I have seen with the other users is that they're using Vista home and/or business with the 256bit encryption while I am using the 128 bit encryption.
This site was also previously on a hosted site, not requiring ssl, but no one had the second login issue which makes me think I am missing a server option that should be on my machine.
Thanks in Advance!
how to secure an asp.net web site against Phishing Frame Attacks?
I am trying to create a secure web service that will require certificate from clients. I'm not working with WCF, just a web service. This is what I did so far:
On the default web site, where I have other web sites that are not secured, I've configured one of the virtual directories in the following way: Directoy Security->Secure Communication -> Edit I've Tagged Require SSL, and Require client certificate.
Then, I've created a Many to One Mapping rule that maps a certificate, by CN to a certain user account.
When I try to access the web site, with a client application (https://SERVERNAME/VIRTUALDIRECTORY/ASMXFILE.asmx) I get the following message :
"Unable to connect to the remote server"
Ofcourse I send a proper certificate.
What am I doing wrong?
Hello all, I'm new to asp.net and I'm currently practising some few stuffs. I'm creating a hotel reservation system using ASP.net Web site in visual studio 2008 and I currently don't have an App_Data in my solution explorer unlike visual web developer.
1. I have planned to make users of the website login before making their reservations.
2. I have also planned to develop the website such that I will be able to know all reservations made by each user.
First and formost, I will like to know how I can access/View the security database?
Secondly, how do I link my custom made reservation database and the security database in order to achieve my second plan above.?
Someone help me.
I follow the tutorial and creted a web site for my company sales system. One of my collegue mention we use the wrong templet, we should use Web application for company application.
Should i continue using web site or change to web application? We are creating application for company sales, inventory, hr ,etc where possible more than 1000++ user. And during month end, it will be high traffic and transaction. can Web Site Template with BLL and DAL handle it? or i just need a powerful server?
I've consoldated Levi's post on my blog entry Secure or a Security Hole, hardening your Area
I need to deliver source code to client and my boss need to remove all the comments and #region sections from the whole web site source code.
So is there any functionality available in visual studio 2010 or may be in an other 3rd party tool available to do so, which can remove all the #region from all over the source code ?
Otherwise my developers has to do donkey work.... :(( and I don't wish it.
Any help or tips/tricks would be appreciated.
I've been building web sites and for my next project I will be creating a web application. I use a 'BasePage' class in all my projects but, since web applications do not contain the 'App_Code' folder, what is the best place/practice for the 'BasePage' class?
is it possible to convert whole visual studio 2008 web site project to visual studio 2010 web site project
my current project references
i have a very annoying iis problem
iis server stops working until app pool is recycled
i am hoping that new visual studio (net framework 4.0) may solve this very annoying unsolveable problem