.Net security flaw

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ Framework
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - How.... ? Versions..... 1. In a computer C:\WINNT\Microsoft.NET\Framework\v1.1.4322 do exist. That means .Net 1.1 framework is installed? 2. How to determine whether .NetFrame work is installed or not in a system? 3. Can different versions of .Net can co exist? Thanks, Will Tag: .Net security flaw Tag: 86185
  - 2
    - redistributing cordbg I wanted to know if it is legal to use the cordbg (command line debugger), that comes with SDK, in a commercial application and redistribute it? Tag: .Net security flaw Tag: 86184
  - 3
    - invlcking the Assembly Cache Viewer how do i start the Assembly Cache Viewer? The help says it's an extension and tells me where the dll is then nothing Tag: .Net security flaw Tag: 86181
  - 4
    - Thread This is a multi-part message in MIME format. ------=_NextPart_000_0154_01C4C285.EFD2E030 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable (VB.NET newbie) I need some help in writing a small application which continuosly = searches for a file in a list of folders eg C:\FS\101 \102 \103 .. .. When a file is found then the application should begin processing the = file. And another version of the program should begin i.e. which = continues searching.=20 So a scenario could occur that 3 files are found then 3 processes which = deal with the file should run simultaneously and another to continue = searching. etc I think is is todo with MultiThreading but i am not sure where to start = in vb.net. Many Thanks ------=_NextPart_000_0154_01C4C285.EFD2E030 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2800.1476" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=3D#ffffff> <DIV><FONT size=3D2>(VB.NET newbie)</FONT></DIV> <DIV><FONT size=3D2>I need some help in writing a small application = which=20 continuosly searches for a file in a list of folders eg</FONT></DIV> <DIV><FONT size=3D2>C:\FS\101</FONT></DIV> <DIV><FONT size=3D2>        = \102</FONT></DIV> <DIV><FONT size=3D2>        = \103</FONT></DIV> <DIV><FONT size=3D2>..</FONT></DIV> <DIV><FONT size=3D2>..</FONT></DIV> <DIV><FONT size=3D2></FONT> </DIV> <DIV><FONT size=3D2>When a file is found then the application should = begin=20 processing the file. And another version of the program should = begin i.e.=20 which continues searching. </FONT></DIV> <DIV><FONT size=3D2>So a scenario could occur that 3 files are found = then 3=20 processes which deal with the file should run simultaneously and another = to=20 continue searching. etc</FONT></DIV> <DIV><FONT size=3D2>I think is is todo with MultiThreading but i am not = sure where=20 to start in vb.net.</FONT></DIV> <DIV><FONT size=3D2>Many Thanks</FONT></DIV> <DIV><FONT size=3D2></FONT> </DIV></BODY></HTML> ------=_NextPart_000_0154_01C4C285.EFD2E030-- Tag: .Net security flaw Tag: 86174
  - 5
    - MachineName = DomainName ??? Hi All, We're getting a situation where occasionally our queries to MachineName and DomainName are both returning the domain. We're using the following calls: System.Environment.MachineName System.Environment.UserDomainName The application deals with Active Directory, so we are assuming that our users are system admins who are logged into domains, not workgroups. Is there a bug in the framework, or am I just a net-tard? Any help, much appreciated. Chris Tag: .Net security flaw Tag: 86172
  - 6
    - ODP.NET Hello All, I'm converting a C++ builder app to .NET using C#. In my login screen before I display it I retrieve a server list to populate a combo box. In the current app it uses ODAC's method GetServerList() to retrieve this list. Is their something similar in ODP.NET? If not how can I accomplish this in the .NET framework? Thanks In Advance, ALR Tag: .Net security flaw Tag: 86171
  - 7
    - Best Practice Is there any best practice for the installation and configuration of FrameWork .NET SP1? Any help will be appreciated. Thanks Phil Tag: .Net security flaw Tag: 86166
  - 8
    - ArrayList adapter problem Here's some c# code: using System; using System.Collections; namespace AdapterProblem { class Class1 { [STAThread] static void Main(string[] args) { ArrayList source = ArrayList.Adapter(new object [] {"1" , "2"}); ArrayList range = source.GetRange(1,1); ArrayList target = new ArrayList(); target.AddRange(range); Console.WriteLine(target[0] == null? "It's null" : target[0]); Console.ReadLine(); } } } I would expect this to print out the second element of source - i.e. the string "2". Actually it turns out that target[0] is null so the program prints "It's null". Is this a bug? If this behaviour is as it should be could someone please explain why? Tag: .Net security flaw Tag: 86160
  - 9
    - New Forum Needs a Lift! We Need Programmers! This is a multi-part message in MIME format. ------=_NextPart_000_0130_01C4C2AA.510C0E70 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Hi everyone, www.webdesignmagic.com.au/forum.asp <BLOCKED::BLOCKED::BLOCKED::http://www.webdesignmagic.com.au/forum.asp> I am trying to get a new Programming and Website Design forum in Australia up and running. I am looking for new members who may be able to help others in programming related issues and web site design issues. Please visit www.webdesignmagic.com.au/forum.asp <BLOCKED::BLOCKED::BLOCKED::http://www.webdesignmagic.com.au/forum.asp> and introduce yourself or maybe see if someone needs help! I am not using this for marketing purposes, simply wish to repay the favours others have done for me when I needed help. Thanks Daren Hawes MCAD.NET, MCSD.NET ------=_NextPart_000_0130_01C4C2AA.510C0E70 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Dus-ascii"> <META content=3D"MSHTML 6.00.2900.2523" name=3DGENERATOR></HEAD> <BODY> <DIV><FONT face=3DArial size=3D2> <DIV dir=3Dltr align=3Dleft><FONT face=3DArial size=3D2><FONT = face=3DArial size=3D2><FONT=20 face=3DArial size=3D2><SPAN class=3D241442204-04112004>Hi=20 everyone,</SPAN></FONT></DIV> <DIV> <DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D241442204-04112004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D241442204-04112004><A=20 href=3D"BLOCKED::BLOCKED::BLOCKED::http://www.webdesignmagic.com.au/forum= .asp">www.webdesignmagic.com.au/forum.asp</A></SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D241442204-04112004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D241442204-04112004>I am = trying to get a=20 new Programming and Website Design forum in Australia up and=20 running.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D241442204-04112004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D241442204-04112004>I am = looking for new=20 members who may be able to help others in programming related issues and = web=20 site design issues.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D241442204-04112004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D241442204-04112004>Please = visit <A=20 href=3D"BLOCKED::BLOCKED::BLOCKED::http://www.webdesignmagic.com.au/forum= .asp">www.webdesignmagic.com.au/forum.asp</A>=20 and introduce yourself or maybe see if someone needs = help!</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D241442204-04112004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D241442204-04112004>I am = not using this=20 for marketing purposes, simply wish to repay the favours others have = done for me=20 when I needed help.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D241442204-04112004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D241442204-04112004>Thanks = Daren=20 Hawes</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN = class=3D241442204-04112004>MCAD.NET,=20  MCSD.NET</SPAN></FONT></DIV></FONT></DIV></FONT></DIV></FONT></DIV>= </BODY></HTML> ------=_NextPart_000_0130_01C4C2AA.510C0E70-- Tag: .Net security flaw Tag: 86159
  - 10
    - Framework 1.1 merge module A have a question. Does exists instalation of framework 1.1 as merge module? Tag: .Net security flaw Tag: 86157
  - 11
    - Installed net framework; now I have to select an account when boot I recently installed NET framework on my XP home system. Now, instead of booting normally, I'm presented with an account screen that asks me to select an account to log into. The account screen only has one choice (my normal account), so it seems silly and pointless to have to select it. I've reviewed the documentation for bypassing this screen, and it says that other accounts have to be deleted from my User Accounts. Looking at my User Accounts, I now see three: my normal account, a Guest account (which is turned off), and one marked "ASP.NET Machine A...". Is this safe to delete? If not, how can I revert to a situation where my bootup is automatic? Many thanks, Josh Tag: .Net security flaw Tag: 86147
  - 12
    - Installed .NET framework; now have to select account when booting Ever since installing .NET framework, I now have to select my account when booting XP. My account is the only one that appears on the start screen. It seems silly to have to select my account when I'm the only one who has an account on the system. However, under Control Panel>User Accounts, there are three listed: the one under my name (the same one that appears on the startup screen, that has to be elected), as well as "Guest" (and it says "Guest account is off") and an account called "ASP.NET MACHINE A...". Is it safe to delete the ASP.NET MACHINE A... account? If not, how can I automatically boot as I used to? Many thanks, Josh Tag: .Net security flaw Tag: 86146
  - 13
    - Oracle 9i release 2 on Win2KSP4. .NET 1.1.. Exception from OracleClient Hi I'm using System.Data.Oraclient client developing on the same machine as the Oracle Server. I'm able to talk to my database via SQLPlus but when I try to connnect via the OracleConnection's Open() method I get an error saying System.Data.OracleClient requires Oracle client software version 8.1.7 or greater. I have Oracle 9i release 2 on the same machine. Any clues? TIA Tag: .Net security flaw Tag: 86144
  - 14
    - deployment of .NET Apps on Windows 2000 box Hello, I have developed a client and server app under VS 20003 in C# using .NET remoting. I created a setup install using the IDE and I am deploying the apps onto a Windows 2000 box running Service Pack 3. The 2000 box has the .NET framework, the ODBC Data Provider and a MySQL driver installed. The client app fires up ok but the server app does not. The only difference I see is that the server app registers a channel and connects to a MySQL database. The server app works fine under the Visual Studio 20003 IDE. Would anyone have any suggestions? Do I need service pack 4? I wouldn't think so. Do I need to have IIS installed? I am using the namespace System.Data.SQLClient, System.Data and Microsoft.Data.Odbc. with regards James Tag: .Net security flaw Tag: 86142
  - 15
    - Using ActiveX Controls In a .NET Compact Framework Forms Application Hi, I want to use an ActiveX control on a Forms application; the control is already installed on my Pocket PC. How can I do this? Is this possible? I already know how to do it on a normal .NET application, but not on Pocket PC. Any help would be very important. Thanks in advance, Ricardo Peres Tag: .Net security flaw Tag: 86134
  - 16
    - Reboot Windows 2003 Server With ExitWindowsEx Hi There. There is a lot of post about reboot windows. I need to reboot my server with a ASPX application and the code must run on server side. Y do all that people says: (open a process token, Ajusting token privileges, etc...) The question is that the code works fine in Windows XP but not In Windows 2003 Server. Theres someone that know how to do the same in Win 2003 Server ? Is there a security issue that i missing ? -------------------------------- From: Condor Tag: .Net security flaw Tag: 86131
  - 17
    - New Problem with Always on Top Thank you for you help with the Always on Top issue previously posted. It worked great. But, I have noticed that when I call a different form using "ShowDialog" that the clipboard is still on top but I cannot access it. Is there a way to make MyClipboard not effected by the other forms that are displayed using "ShowDialog". I am looking to copy information from Frm2.ShowDialog into MyClipboard and paste it into Frm3.ShowDialog from MyClipboard... Thanks. Chuck Tag: .Net security flaw Tag: 86130
  - 18
    - Always on Top Hello, I am creating a clipboard that is always on top of my application. How can I make my form (MyClipboard) always on top?? Thanks, Chuck Tag: .Net security flaw Tag: 86125
  - 19
    - Article : Assembly Linker (Al.exe .Net FrameWork Tools Series) Hi All, Assembly linker is a tool which is used to create an assembly by combining one or more .netmodules and resource files. In simple words an .netmodule is an IL file that does not have manifest in it .... you can say its an assembly without the manifest ... and hence a non -assembly file containing IL code. In the yesterday's example we saw how we can create the .resources file which by itself is a binary file containing your resource data. Today we will see how we can embed or link this .resource file with other .netmodules and create an assembly 1) Create 2 .netmodules say Module1.netmodule and Module2.netmodule 2) Create a .resources file say MyResources.resources (as we created in yesterdays article ... please to the same for more details) 3) Now type the follwoing command to combine these modules and binary resource file into a single assembly. // to create a dll. al Module1.netmodule Module2.netmodule /embed:MyResources.resources /out:MyExecutable.dll // to create an exe. al Module1.netmodule Module2.netmodule /embed:MyResources.resources /out:MyExecutable.exe /target:exe /Main:Class1.Main If you dont want to embed the resource file then use the /link option instead of /embed option with al.exe. Well if you have an want to embed or link a resource then you can compile the resource file when you are compliing the assembly with csc.exe or vbc.exe just use /resource to embed the resource or /linkresource with the assembly. You can also achieve this from VS.Net studio by including the resource file in the project and setting the Build Action of the resource type to Embedded Resource. Al is mainly used by a lot of developers to create resource satellite assemblies esp for creating multilingual applications by creating resource assemblies for various cultures. If only resource files are passed to Al.exe, the output file is a satellite resource assembly. E.g. To create an satellite assembly for french culture 1) Create a file named MyResource.fr-FR.txt 2) Type your name=value resource data in it to generate the resource file 3) generate the resource file with the name of MyResource.fr-FR.resources. 4) And finally create the satellite assembly as shown below for your application al /out:MyGlobApp.resources.dll /v:1.0.0.0/c:fr-FR /embed:MyResource.fr-FR.resources, Private Note : Check out the Private keyword in the above command. You can use the "private" option if you want dont want other assemblies to use the embedded resource files by default it is "public". 5) In this command we have specified the output file name , the version of this DLL , the culture "fr-FR" which denotes french and finally we are embedding the fr-FR.resources file in MyGlobApp.resources.dll 6) Place this file in bin\fr-FR folder of your application and read it from the application using the ResourceManger Class. There are a lot of other options that are available with AL you can view these options by typing al /? or al /help. I am enlisting a few important or frequently used ones here : a.. /copy[right]:<text> Copyright message b.. /c[ulture]:<text> Supported culture c.. /delay[sign][+|-] Delay sign this assembly d.. /out:<filename> Output file name for the assembly manifest e.. /t[arget]:lib[rary] Create a library f.. /t[arget]:exe Create a console executable g.. /t[arget]:win[exe] Create a Windows executable h.. /trade[mark]:<text> Trademark message i.. /v[ersion]:<version> Version (use * to auto-generate remaining numbers) j.. /win32icon:<filename> Use this icon for the output k.. /win32res:<filename> Specifies the Win32 resource file If you checkout the help at the end you will see this lines which show you how to go about using this tool. Sources: (at least one source input is required) <filename>[,<targetfile>] add file to assembly /embed[resource]:<filename>[,<name>[,Private]] embed the file as a resource in the assembly /link[resource]:<filename>[,<name>[,<targetfile>[,Private]]] link the file as a resource to the assembly -- Please post your queries and comments for my articles in the usergroup for the benefit of all. I hope this step from my end is helpful to all of us. Regards, Namratha (Nasha) Tag: .Net security flaw Tag: 86124
  - 20
    - IDE Clipboard Format The Code Window, when I copy stuff to the clipboard, formats the stuff "richly", so if I try to email or newspost it, it tries to paste in the other window with Rich Formatting. I have looked in the Options dialog and not found anything to disable. Do we know of a way to make the .NET IDE Clipboard copier to *only place* the ASCII text on the clipboard? -- Peace & happy computing, Mike Labosh, MCSD "I have no choice but to believe in free will." Tag: .Net security flaw Tag: 86121
  - 21
    - How to hide and show the app's console? hi all how can i hide and show my app's console? assaf Tag: .Net security flaw Tag: 86115
  - 22
    - HRESULT == '8007065B' Hi, I have the following error when I build my setup application : Unable to build assembly named 'CGB_COM.dll', HRESULT == '8007065B' When I search Google I do not find any solution ! Can anyone help me ? G. Tag: .Net security flaw Tag: 86111
  - 23
    - .Net communication with a C program Hi ! I have developped a GUI in C# and I would like to integrate an existing protocol parser written in C. I am exploring the possibilities. But I have little experience in .NET to take a correct decision. That's why I would appreciate your comments and remarks. Is it possible to add C (non OOP) code to C# ? I believe it's not possible. - I can port the parser to C#, but I need to modify the structure of the program to be conform to an Object Oriented structure. - I can use communication methods such as Message Queues, IPC and communicates between these 2 programs. Do you have any suggestions ? Thanks in advance, Sadi. Tag: .Net security flaw Tag: 86107
  - 24
    - Reading accents within a text file Hi I have a trivial question for the experts. I would lilke to read be able to read a text file that could contain french characters with accents. I'm opening the file with the File.openText(...) and then loop through the file with the Readline function into a string variable. But everytime a hit a char with an accent I loses it. Example : pÃ¨re reads pre Thanks in advance ChÃ©rif Tag: .Net security flaw Tag: 86100
  - 25
    - Bad tapi File handle Hi, I have the tapicomm example running fine in Visual C++ 6.0. I amde it into a class to use in an MFC app that we have, that is in .NET 2003. I get an invalid handle when I try to write using WriteFile(), returns error 6. I use the code, hCommFile = *((LPHANDLE)(LPBYTE)lpVarString + lpVarString->dwStringOffset)); I have seen this problem dealt with in the Tapi news groups but no answer that seemed to apply here. Any help would be appriciated. Thanks Jeff *** Sent via Developersdex http://www.developersdex.com *** Don't just participate in USENET...get rewarded for it! Tag: .Net security flaw Tag: 86097
- Next
  - 1
    - Asp.Net Forms authentication using Active Directory Hi. I am using forms authentication in ASP.Net against Active Directory. I have followed the example provided by Microsoft. Here is my problem. Standard practise for AD Administrators is to flag the account to change the password when he logs in. Also that passwords expire after 30 days. If any of these conditions are true the sample code from MS simply returns the error message: "Bad username or password". This happens the second the code tries to bind to AD. It does not tell me that the user has to change his password or that his password has expired but simple that it is a "Bad username or password". Has anyone come accross this or have any ideas. *Ps I did not implement the portion of code where they create a generic pricipal object etc as I do not need any other info from AD other than checking the username or password. Could this have anything to do with the problem? -- Regards Egbert Tag: .Net security flaw Tag: 86090
  - 2
    - Can you check if a DLL is running within a Windows Service or traditional application? Hello I have a "functions" DLL that is included in my traditional applications and within my Windows Services, but I need to be able to check whether an application is running a method in the DLL or whether it is being called from a Windows service, how can I go about doing this? Thanks in advance PD Tag: .Net security flaw Tag: 86085
  - 3
    - Open and close a word file Hi, I open a word file using ShellExecute. But I have to know when the open file is closed. How could I know this? Is it possible or not? Thanks in advance, Ruslan Tag: .Net security flaw Tag: 86079
  - 4
    - What is UDDI Dear friends Can any one explain what is UDDI . I see lot of meterials in the net. but I didn't able to understant it Regards Prakash Tag: .Net security flaw Tag: 86077
  - 5
    - Installation Problem in vs.net Hi, I had installed vs.net 2003 on my sytem at home. But the problem is that I'm unable to debug the applications and also the web applications are not running correctly. I'm ubale to trace out the problem. Whenever I try to debug the application, it's giving me the error as follow " Unable to start the debugging.The System cannot find the file specified" Can anyone help me out..it's urgent... Tag: .Net security flaw Tag: 86072
  - 6
    - XML Serialization I am using ICollection to serialize array objects. Is there a way to add an XML attribute inside the collection class? In the following example I would like to get the Link attribute serializable. [System.Xml.Serialization.XmlRootAttribute("RJ",Namespace="", IsNullable=false)] class MainClass { // <remarks/> [System.Xml.Serialization.XmlElementAttribute("AA")] public A aobject; } class A:ICollection { private string _link; /// <remarks/> [System.Xml.Serialization.XmlAttributeAttribute("Link")] public string Link { get { return _link;} set { _link = value;} } } Thanks, regards, KC Tag: .Net security flaw Tag: 86071
  - 7
    - Create Directory Hi I want to create a Directory using CreateFile() Funtion. does anyone know how to do it?? The following URl says: that one can create directory using CreateFile() http://msdn.microsoft.com/library/default.asp?url=/library/en-us/fileio/base/createfile.asp Tag: .Net security flaw Tag: 86069
  - 8
    - how to get mulitple references to the same string? is it something like this? string str = "foo"; object var1 = ref str; object var2 = ref str; some thing like that? Tag: .Net security flaw Tag: 86063
  - 9
    - how to determine how many places refer to a string? ok so lets say i have a string that got passed into a method by ref but i want to see how many other places that string is refered to is this possible? Tag: .Net security flaw Tag: 86061
  - 10
    - Code Permission - Should I write a custom "Friend Permission" (or does it exist)?? Should I be writing a custom <Permission> attribute that prevents any code, other than code from within a class's containing assembly to call it? OR - is there some inbuilt framework permission/mechanism for doing that. It seems like a pretty common thing that everyone would want to do a lot, so I thought I'd ask before I rolled by own. Many thanks. === Phil (Auckland | Aotearoa) Tag: .Net security flaw Tag: 86058
  - 11
    - Socket and Remoting Hang Error Hello! Below is the scenario 1) 2 same applications one ASP and another ASP.NET(migrated) running on the same web server machine 2) Both maintain a Cache and the Cache itself has a Socket, WebService and Remoting interfaces for any application to update it 3) A third app (Windows Service) runs on the same machine to update the cache 4) The Win Service successfully updates the Cache for the ASP pages but for the ASP.NET pages, the call just hangs with no errors. The Web Service update work fine in all the cases. The hang happens only on Windows 2000 Server. Windows XP and 2003 work fine 5) Can anybody help me solve this problem? I have tried all possible scenarios. The Cache object is the same code base for ASP and ASP.NET, in case of ASP it uses Interop. ASP works fine thoughout, but ASP.NET hangs. WebServices work fine in ASP.NET but due to performance reasons we can to use Remoting or Sockets Tag: .Net security flaw Tag: 86052
  - 12
    - Change Highlight Color in a Textbox Hello, Looking for help changing the Highlight color in a Textbox in VB.NET. Any Suggestions will be greatly appreciated. Thanks, Chuck Tag: .Net security flaw Tag: 86051
  - 13
    - What is important IE to run the .net framework What are the necesary components inside IE in order to to run the .net framework ? Why do I have to load the machine with IE ? When I need to do it? for Web App, Win Apps ..all the time Ken Tag: .Net security flaw Tag: 86050
  - 14
    - How Secure is "Friend" If I have a strongly-named assembly, I'm wondering how secure is declaring methods as Friend? Is this enough to ensure other assemblies will not be able to access the method (including over a Remoting boundary) or is there some other framework mechansim I should be employing also. Many thanks everyone. === Phil (Auckland | Aotearoa) Tag: .Net security flaw Tag: 86049
  - 15
    - Finding an assembly after installing in the GAC. I recently installed an assembly in the GAC and now I am having some trouble finding it. This assembly defines some TraceListeners that I am using for logging in our app. The application configuration file contains the following lines the assembly is ErrorLog: <trace autoflush="true" indentsize="4"> <listeners> <add name="debugOut" type="System.Diagnostics.DefaultTraceListener" /> <add name="consoleOut" type="visa.dps.ppc.DynamicFileTraceListener, ErrorLog" initializeData="ApplicationServer.log" /> <add name="eventOut" type="visa.dps.ppc.EventTraceListener, ErrorLog" /> <remove name="debugOut" /> </listeners> </trace> I look in the GAC and I see ErrorLog, Version=2.5.4.0, Culture=neutral, PublicKeyToken=33fcdc7f7eb6be4b, Custom=null When I run one of my apps that has a configuration file that contains the lines above, I get: Configuration exception during setup: Couldn't find type for class visa.dps.ppc.DynamicFileTraceListener, ErrorLog. at System.Diagnostics.DiagnosticsConfigurationHandler.HandleListeners(Hashtable config, XmlNode listenersNode, Object context) at System.Diagnostics.DiagnosticsConfigurationHandler.HandleTrace(Hashtable config, XmlNode traceNode, Object context) at System.Diagnostics.DiagnosticsConfigurationHandler.Create(Object parent, Object configContext, XmlNode section) at System.Configuration.ConfigurationRecord.EvaluateRecursive(IConfigurationSectionHandler factory, Object config, String[] keys, Int32 iKey, XmlTextReader reader) at System.Configuration.ConfigurationRecord.Evaluate(String configKey) at System.Configuration.ConfigurationRecord.ResolveConfig(String configKey) at System.Configuration.ConfigurationRecord.GetConfig(String configKey) at System.Configuration.DefaultConfigurationSystem.System.Configuration.IConfigurationSystem.GetConfig(String configKey) at System.Configuration.ConfigurationSettings.GetConfig(String sectionName) at System.Diagnostics.DiagnosticsConfiguration.GetConfigTable() at System.Diagnostics.DiagnosticsConfiguration.Initialize() at System.Diagnostics.DiagnosticsConfiguration.get_SwitchSettings() at System.Diagnostics.Switch.Initialize() at System.Diagnostics.Switch.get_SwitchSetting() at System.Diagnostics.BooleanSwitch.get_Enabled() at System.Xml.Serialization.Compiler.Compile() at System.Xml.Serialization.TempAssembly..ctor(XmlMapping[] xmlMappings) at System.Xml.Serialization.XmlSerializer.FromMappings(XmlMapping[] mappings) at System.Web.Services.Protocols.SoapClientType..ctor(Type type) at System.Web.Services.Protocols.SoapHttpClientProtocol..ctor() at visa.dps.ppc.ivr.IVRService..ctor() at visa.dps.ppc.InstallTestForm..ctor() ---------- Any idea as to what I am doing wrong? Thank you. Kevin Burton Tag: .Net security flaw Tag: 86047
  - 16
    - Errors After Installing Framework SP1 Hi, We are running on Windows 2000 Server SP4. Our .NET Framework version is 1.1. After I installed .NET Framework 1.1 SP1, I noticed the following error messages in the Application Log: The first error was a System.EnterpriseService error. It reads: "System.EnterpriseServices failed to install. Please fix the problem (see exception below) and run 'regasm System.EnterpriseServices.dll' again to install System.EnterpriseServices. Exception: 'System.NotImplementedException: Not implemented at System.EnterpriseServices.Admin.ICatalogCollection.Populate() at System.EnterpriseServices.RegistrationDriver.Populate(ICatalogCollection coll) at System.EnterpriseServices.RegistrationHelperTx.InstallUtilityApplication(Type t)'". The next one is a LoadPerf error ID 3009. It reads: "Installing the performance counter strings for .NETFramework failed. The Error code is DWORD 0 of the Record Data." Does anyone know why I am getting these errors? Thank you Tag: .Net security flaw Tag: 86045
  - 17
    - Can i copy machine.config? Hi, Is there any side efect of copying the machine.config file from one server to another? Is there any unique ID in each file? Thanks Phil Tag: .Net security flaw Tag: 86044
  - 18
    - CSLA.NET vs other software? I have been looking into a good object/relational framework solutions for my software application. Regardless CLSA is free, how does CSLA.NET framework compare to other O/R solutions? CSLA.NET http://www.lhotka.net/ eXpress Persistent Objects (easy to use, but seems it's not robust enough, e.g. doesn't even support nested transaction) http://www.devexpress.com/?section=/Products/NET/XPO DataObjects.Net (seems to be a solid product, tons of features, but the company is very young, started in 2003 Russia) http://www.x-tensive.com/Products/DataObjects.NET/ Any comments? Tag: .Net security flaw Tag: 86041
  - 19
    - Decrease Build Time Is there a way to increase the build speed of a solution that has a lot of projects (>100)? The only options I can think of is to remove the dependencies in the soluton or break up the solution into multiple smaller solutions. -- Jorge Matos - Software Architect Microsoft Solution Center 6050 Oak Tree Blvd. Suite 150 Cleveland, Ohio 44131 216.369.0140 ext. 117 www.bennettadelson.com Tag: .Net security flaw Tag: 86040
  - 20
    - Where's a good place to start with Pocket PC apps. Things I want to know, does a pocket PC have a file structure similar to a pc? Could I build a PPC app that uses an XML datafile residing on the PPC? Tag: .Net security flaw Tag: 86039
  - 21
    - Logging Application Block. Hi, I am getting started with microsoft Logging Application Block and I wonder if any one can direct what is the best way to use this block in such a way that I can have an application which read the log file immediately as a new entry was added to the log, I am thinking to format an "entry" as XML note that I cannot raise event from my server to the application which read the log since not all the time the application is running Thanks. Tag: .Net security flaw Tag: 86038
  - 22
    - How to get dbgclr on client PC I am trying to get a debugger on a client PC so I can troubleshoot a VB .NET application that runs fine on most other PCs. I thought I could just copy the GUIdebug folder from the SDK - wrong! Surely I will not have to install the entire SDK just to be able to get some meaningful messages out of the failed app???!!! Is there a way to install JUST the stuff necessary for dbgclr? Your suggestions will be appreciated. -- Phil Tag: .Net security flaw Tag: 86037
  - 23
    - regarding MailMessage Hey guys, I want to know how to use MailMessage.UrlContentLocation property and MailMessage.Headers property. i got struck at my project for this task. Can any one help me in this... thanks sri Tag: .Net security flaw Tag: 86036
  - 24
    - Socket EndConnect problem Hi All, I'm having a strange Socket problem. I wrote a little FTP tool using asynchronous sockets. While connecting to a certain FTP server (actually a printer to which I print by FTP'ing a control file) I get a weird error when I call EndConnect: "No connection could be made because the target machine actively refused it" But the strange thing is that if I don't call EndConnect at all, it works and I can upload just fine. I guess I don't understand what EndConnect really does. I have hunted all over the web and find lots of documentation that says basically that it ends the connection that you start with BeginConnect, but what does it really DO? And why would I get an error when calling it but have the FTP server work anyway if I just omit the call? Any ideas here? TIA. Cheers, Josh Tag: .Net security flaw Tag: 86035
  - 25
    - Article : Resource File Generator (Resgen.exe .Net FrameWork Tools Series) This is a multi-part message in MIME format. ------=_NextPart_000_0008_01C4C13B.3BABE9D0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi All, This is a resource file generation tool which converts an xml based = resource formats to .net resource file i.e. (.resources) and vice-versa. = Today we will see how we will generate =3D=3D> .txt files from .resources or .resx files.=20 =3D=3D> .resources files from text or .resx files.=20 =3D=3D> .resx files from text or .resources files.=20 Let us start with converting a .txt file to resources or resx file=20 In order to convert from one type to another we must ensure that the = data written in them is in the correct format.=20 Text files can only contain string resources as name=3Dvalue pairs. Name = here is a string that describes the resource it needs to be=20 unique and the value is the resource string. All these name value pairs = should start from a new line.=20 Lets create a text file containing 10 name=3Dvalue pairs;=20 1) Create a text file name MyText.txt. 2) Type the below name=3Dvalue pairs=20 name1=3Dvalue name2=3Dvalue name3=3Dvalue name4=3Dvalue name5=3Dvalue name6=3Dvalue name7=3Dvalue name8=3Dvalue name9=3Dvalue name10=3Dvalue=20 3) Type the following command to generate MyResources.resx from = MyText.txt.=20 4) If you duplicated any of the entires you will get the below error = message.=20 error: Duplicate resource key! Else your resources will be complied successfully with the following = message. Read in 10 resources from 'MyText.txt' Writing resource file... Done.=20 5) To generate .resources file from .txt file use the following command = resgen MyText.txt MyResources.resources=20 6) To genereate .txt from .resources file or .resx file use the = following commands resgen MyResources.resx MyTextFromRes.txt resgen MyResources.resources MyTextFromResources.txt=20 7) To generate .txt file from resx file or .resource file use the = following commands:=20 resgen MyResources.resx MyTextFromRes.txt resgen MyResources.resources MyTextFromResources.txt=20 There are a certain advantages or disadvantages of these format over one = another :=20 1) Text file format name=3Dvalue pair is very convient ,easy to use and = create but can contain only text strings and hence you cannot embed any = objects in these files. 2) Resx file format has the data in the xml format and hence you can = embed objects. You will also be able to view the binary information = about these objects e.g. embedding images in the resource files.=20 Thus .Resources file is a binary file which is used by the assemblies .Resx has the data in an xml format .txt has the data in name=3Dvalue format .... gr8 so many ways to = represent and use your data.=20 To use these resource files in your assembly( as a part of your = assembly) you will need to embed or link it with main assembly using = assembly linker or create satellite assembly.(We will look into detail = about this in tommorrow's article). -- Please post your queries and comments for my articles in the = usergroup for the benefit of all. I hope this step from my end is = helpful to all of us.=20 Regards, Namratha (Nasha) ------=_NextPart_000_0008_01C4C13B.3BABE9D0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2600.0" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY> <DIV> <P><FONT face=3DArial size=3D2>Hi All,</FONT></P> <P><FONT face=3DArial size=3D2>This is a resource file generation tool = which=20 converts an xml based resource formats to .net resource file i.e. = (.resources)=20 and vice-versa. </FONT></P> <P><FONT face=3DArial size=3D2>Today we will see how we will = generate</FONT></P> <P><FONT face=3DArial size=3D2>=3D=3D> .txt files from .resources or = .resx files.=20 </FONT></P> <P><FONT face=3DArial size=3D2>=3D=3D> .resources files from text or = .resx files.=20 </FONT></P> <P><FONT face=3DArial size=3D2>=3D=3D> .resx files from text or = .resources files.=20 </FONT></P> <P><FONT face=3DArial size=3D2>Let us start with converting a .txt file = to resources=20 or resx file </FONT></P> <P><FONT face=3DArial size=3D2>In order to convert from one type to = another we must=20 ensure that the data written in them is in the correct format. = </FONT></P> <P><FONT face=3DArial size=3D2>Text files can only contain string = resources as=20 name=3Dvalue pairs. Name here is a string that describes the resource it = needs to=20 be </FONT></P> <P><FONT face=3DArial size=3D2>unique and the value is the resource = string. All=20 these name value pairs should start from a new line. </FONT></P> <P><FONT face=3DArial size=3D2>Lets create a text file containing 10 = name=3Dvalue=20 pairs; </FONT></P> <P><FONT face=3DArial size=3D2>1) Create a text file name = MyText.txt.</FONT></P> <P><BR><FONT face=3DArial size=3D2>2) Type the below name=3Dvalue pairs = </FONT></P> <P><FONT face=3DArial color=3D#0000ff=20 size=3D2>name1=3Dvalue<BR>name2=3Dvalue<BR>name3=3Dvalue<BR>name4=3Dvalue= <BR>name5=3Dvalue<BR>name6=3Dvalue<BR>name7=3Dvalue<BR>name8=3Dvalue<BR>n= ame9=3Dvalue<BR>name10=3Dvalue=20 </FONT></P> <P><FONT face=3DArial size=3D2>3) Type the following command to generate = MyResources.resx from MyText.txt. </FONT></P> <P><FONT face=3DArial size=3D2>4) If you duplicated any of the entires = you will get=20 the below error message. </FONT></P> <P><FONT face=3DArial color=3D#ff0000 size=3D2>error: Duplicate resource = key!</FONT></P> <P><FONT face=3DArial size=3D2></FONT><BR><FONT face=3DArial = size=3D2>Else your=20 resources will be complied successfully with the following = message.</FONT></P> <P><BR><FONT face=3DArial size=3D2><FONT color=3D#800000>Read in 10 = resources from=20 'MyText.txt'<BR>Writing resource file... Done.</FONT> </FONT></P> <P><FONT face=3DArial size=3D2>5) To generate .resources file from .txt = file use the=20 following command resgen MyText.txt MyResources.resources </FONT></P> <P><FONT face=3DArial size=3D2>6) To genereate .txt from .resources file = or .resx=20 file use the following commands</FONT></P> <P><FONT face=3DArial color=3D#0000ff size=3D2>resgen MyResources.resx=20 MyTextFromRes.txt<BR>resgen MyResources.resources = MyTextFromResources.txt=20 </FONT></P> <P><FONT face=3DArial size=3D2></FONT> </P> <P><FONT face=3DArial size=3D2>7) To generate .txt file from resx file = or .resource=20 file use the following commands: </FONT></P> <P><FONT face=3DArial size=3D2><FONT color=3D#0000ff>resgen = MyResources.resx=20 MyTextFromRes.txt<BR>resgen MyResources.resources = MyTextFromResources.txt</FONT>=20 </FONT></P> <P><FONT face=3DArial size=3D2>There are a certain advantages or = disadvantages of=20 these format over one another : </FONT></P> <P><FONT face=3DArial size=3D2>1) Text file format name=3Dvalue pair is = very convient=20 ,easy to use and create but can contain only text strings and hence you = cannot=20 embed any objects in these files.</FONT></P> <P><BR><FONT face=3DArial size=3D2>2) Resx file format has the data in = the xml=20 format and hence you can embed objects. You will also be able to view = the binary=20 information about these objects e.g. embedding images in the resource = files.=20 </FONT></P> <P><FONT face=3DArial size=3D2>Thus</FONT></P> <P><FONT face=3DArial size=3D2>.Resources file is a binary file which is = used by the=20 assemblies<BR>.Resx has the data in an xml format<BR>.txt has the data = in=20 name=3Dvalue format .... gr8 so many ways to represent and use your = data.=20 </FONT></P> <P><FONT face=3DArial size=3D2>To use these resource files in your = assembly( as a=20 part of your assembly) you will need to embed or link it with main = assembly=20 using assembly linker or create satellite assembly.(We will look into = detail=20 about this in tommorrow's article).</FONT></P> <P><FONT face=3DArial color=3D#0000ff size=3D2><STRONG><EM>-- Please = post your queries=20 and comments for my articles in the usergroup for the benefit of all. I = hope=20 this step from my end is helpful to all of us. </EM></STRONG></FONT></P> <P><FONT face=3DArial color=3D#0000ff=20 size=3D2><STRONG><EM>Regards,</EM></STRONG></FONT></P> <P><FONT face=3DArial color=3D#0000ff size=3D2><STRONG><EM>Namratha=20 (Nasha)</EM></STRONG></FONT></P></DIV></BODY></HTML> ------=_NextPart_000_0008_01C4C13B.3BABE9D0-- Tag: .Net security flaw Tag: 86034

I'm sure there are rumours flowing around like this every day but has anyone
heard of a fundamental security flaw in .Netwhich makes any application
running it and the data stored in it accessible to hacker.

I'm sure this is just rumour-mongering but I'd be interested in knowing if
anyone else has heard anything.

Thanks
Stephen

Top

Re: .Net security flaw by Paul

Paul
Thu Nov 04 13:14:48 CST 2004

On Thu, 4 Nov 2004 17:55:45 -0000, "Stephen Goodridge" <sgoodridge@dolphinitsolutions.com> wrote:

¤ I'm sure there are rumours flowing around like this every day but has anyone
¤ heard of a fundamental security flaw in .Netwhich makes any application
¤ running it and the data stored in it accessible to hacker.
¤
¤ I'm sure this is just rumour-mongering but I'd be interested in knowing if
¤ anyone else has heard anything.

You may be thinking of the following:

http://www.microsoft.com/security/incident/aspnet.mspx

Paul ~~~ pclement@ameritech.net
Microsoft MVP (Visual Basic)

Top