SQL Server :: SQL Server Security Validation + HTML Markup Security?

Aug 31, 2010

I have an application, that for example, the customer gives me their Address.I store it in my database using the below code:

Dim connectionString As String = ConfigurationManager.ConnectionStrings("DMBConnstring").ConnectionString

View 2 Replies

Similar Messages:

Security :: Retrieve List Of All Security Groups For Server?

May 6, 2010

I am utilizing local security groups to secure my application and I need to list all the available groups on the local machine. I can get the list of groups a user is a member of, but I need the complete list of available groups.

View 1 Replies

How The Server Process The Page - Code Behind - "markup Mixed With HTML Elements"

Oct 23, 2010

I want to know how the server will process my page that contain:

1- ASP.NET markup mixed with HTML elements.
2- Code behinde.

Will it read the ASP.NET markup line by line and even HTML elements? And then reads the code behind? or what exactly?

View 1 Replies

Security :: Client System Which Access The Database Server Aswell As Web Server

May 10, 2010

in its webconfig file i have

<identity impersonate="true" userName="webserverloginname" password="webserverpassword" />
sername1= username of the system
password1 = passowrd of the system
username2= username of the the database
password2 = passowrd of the database

client system which access the database server aswell as web server

View 2 Replies

Security :: Service Call From Application Fails In Server 2008 (worked In Server 2003)

Jan 5, 2011

We have a web application that makes a call to a remotely hosted ASMX service that worked in Server 2003 under IIS6. We are now migrating it to a Server 2008/IIS 7 setup and it doesn't appear that the application makes the call to the remote web service anymore. We ran Wireshark and don't see any traffic to the service URL. It seems to throw a 404 error without trying to connect.

Is there some security policy or restriction in Server 2008 or IIS 7 we need to set to allow an ASP.NET application make a call to a remote web service? We are using Network Service as our application pool user, but also tried using Local System as a troubleshooting step. In addition, the same code works if run from a console application on the server instead of the web application.

Is there some setting under IIS7 or server 2008 that would be causing this?

View 3 Replies

Security :: Displaying Role-Specific Markup With The LoginView Control?

Oct 14, 2010

I want to know how can I display role-specific markup using loginview?

I have these three roles, Admin, Editor, Moderator

Each and every user will belog to only one of the following role groups

1. Admin, Editor, Moderator (Some user/s will have all these three roles)
2. Admin, Editor (Some user/s will have all these two roles)
3. Admin, Moderator (Some user/s will have all these two roles)
4. Editor, Moderator (Some user/s will have all these two roles)
5. Admin (Some user/s will have all only this role)
6. Editor (Some user/s will have all only this role)
7. Moderator (Some user/s will have all only this role)

Now I want to display some links that will be specific for each role group to which one or more users will belong. So the links I want to display for these role groups are following

1. Admin, Editor, Moderator => Only Links of all the pages of Admin, Editor and Moderator
2. Admin, Editor => Only Links of all the pages of Admin and Editor
3. Admin, Moderator => Only Links of all the pages of Admin and Moderator
4. Editor, Moderator => Only Links of all the pages of Editor and Moderator
5. Admin => Only Links of all the pages of Admin
6. Editor => Only Links of all the pages of Editor
7. Moderator => Only Links of all the pages of Moderator

I have tried doing this using RoleGroups in Loginview but couldn't succed.

Can anybody let me know the correct way of going this?

View 13 Replies

Web Forms :: Provide Server Side Validation For The Dynamically Added HTML Controls Using Javascript?

Mar 5, 2010

I have a page with a table and two button with the names (Submit and Add Rows) When I click on Add Row a new row will be added to a page(This is achieved using javascript), when I click on submit button I will be doing server side validation. If I found any error the error will be displayed on the page. During this process the controls which were added by me were loosing its state. As a result I need to add the rows once again and need to fill the data and click on submit button. Can any one let me know how to avoid this and see that the controls donot loose their states. So that there is no need for me to create rows once again if any validation fails on the server side.

View 1 Replies

Security :: The Remote Server Returned An Error: (500) Internal Server Error

Nov 9, 2010

In IIS we have a virtual directory (named as "Documents") with in application virtual directory (named as "Reference") that points to an shared folder.All the files with in the "Documents" folder are listed and opened by the user (by clicking on the file name) with in the application

"Reference" application runs under an application pool. This application pool is configured to run with an Active directory account. This AD account has been granted write and modify permissions on the shared folder that contains the html files.

When user tries to open any of the html file located with in the shared location from the application following error is thrown.

System.Net.WebException: The remote server returned an error: (500) Internal Server Error

I tried to browse to the location manually and I can see the required files there.

These files where accessible from our application until yesterday. But we started encountering this error from today.

Is there any IIS settings that needs to be modified?

View 4 Replies

Security :: Login OK On Development Server, But Login Failed On Work Server?

Feb 3, 2010

I have just turned on all membership infrastructure, maked an "Administrator" and successfully logined using standard LoginForm control.But when I uploaded my website on hosting server, I couldn't login anymore.I have MachineKey in web.config. Perhaps I need to set something on server (it is my VDS).

View 5 Replies

C# - Server Tags In Markup?

Feb 4, 2011

Morning all I have frequently used the old

<asp:Label ID="lblWas" runat="server" Text='<%# XPath("FACEVALUE") %>'></asp:Label>

This type of thing. when I first came across it I loved it, i'm using it again today but not quite so simply. I have a number of extra things I would like to achieve.

Apply formatting to the value. Like Text='<%# string.Format(XPath("FACEVALUE"), "{0:c}") %>'>
<asp:LinkButton ID="lnkBook" runat="server" PostBackUrl='/THEATRE/' + XPath("FACEVALUE")>Book</asp:LinkButton>

For option number 2 the URL is not as I would expect, and for number 1 I cannot get the syntax correct if it's even possible.

I have not been able to find something suitable in google. Hopefully what I am trying to achieve is obvious from the example :)

View 3 Replies

Security :: Migrating An Old App To New II7 Server

Aug 12, 2010

I know very little, and even less about .dll's. I have a fairly simple albeit old, application that references a .dll that seems to do the logic for connecting to an access backend. I don't have the source code for the dll, but I don't see any code anywhere elese to sigify the dataconnections etc. When I move the application from an old IIS6 server .net 1.0, over to a newer IIS7 server with .net 2.0osmething, I errors out (see below). When I remove the reference to the dll, the login pages comes up okay but I just can't login. So, something is up with my DLL. What do I need to do?

Error Information: Description: The application attempted to perform an operation not allowed by the security policy. To grant this application the required permission contact your system administrator or change the application's trust level in the configuration file.

Exception Details: System.Security.SecurityException: Request for the permission of type 'System.Web.AspNetHostingPermission, System, Version=, Culture=neutral, PublicKeyToken=b77a5c561934e089'failed. Source Error:


Stack Trace:


View 1 Replies

Development Server Is Not Updating Changes To Markup / Code?

Sep 1, 2010

I've been working on the ASP.NET Development Server recently (on an MVC project and I'm finding that it is inconsistent in how it serves the changes I make to my code. For example, I make a change to the C#/HTML/CSS/JS in the dev environment and run the page, and the change appears on the screen. But if I edit the HTML again and run the page again, the new change doesn't appear. Even ctrl+F5 doesn't do it. I have to stop the web server and run the app again for the changes to update. Has anyone else experienced this? Is there a way to sort this problem out?

If I'm working in IIS and I change something, a ctrl+F5 will always update the page with the changes I've made. I'd like the dev server to be as reliable.

View 2 Replies

Security :: Self Signed SSL Not Working Outside The Web Server?

Mar 22, 2011

I have created a self signed certificate for IIS6 for my app. App works fine when I access it from the web server. But when I access the app from client machine it gives an error "The connection has timed out" on IE, and on Firefox it does not load the page.

View 4 Replies

Security :: Authentication On Server Not Working?

Feb 24, 2011

I've found this article on enabling windows authentication within an intranet ASP.NET application. I did exactly what the article says, and when I go to the page on the server all it does is prompt me for a username and password, which I would assume means that it is seeing me as an anonymous user and not a windows user (which is not true).

In my application on the IIS i have the "Integrated Windows Authentication" box checked and this is what I have for my web.config file:


I've also tried this before and got the same results:


I have no idea what I need to do to get this to authenticate correctly. I've been banging my head off a wall for the past 2 days on this issue.

View 7 Replies

Security :: 401 Error Only On Production Server?

Apr 14, 2010

I have an ASP.NET web application that has the following settings in the web.config file:


(The actual names are different, obviously.) I am not a member of the real "Valid Site Users" group which is why I am given explicit access.I am able to access the site without a problem while developing and debugging locally; however, I get a 401 (Unauthorized Access) error when I deploy the site to a server. The only way to gain access is to remove the <deny> element from the configuration, which is not an acceptable option.I'm certain the solution is something simple and I am just overlooking

View 8 Replies

Security :: Getting Prompeted For Login On Server?

Oct 13, 2010

I am tried forms authentication with allow users="*" and just plain 'none' (results in 401 errors) for authentication, yet I still get redirected to the login page when I access my web app after publishing to my dev server. I have looked at the config on the server (IIS7) and it looks the same as another web app that I literally copied the web.config file from (they use the same membership/role provider).

Here is a snippet from web.config


View 3 Replies

Security :: Create A Login On The Server Using C#?

Feb 1, 2010

I have a list with users logins. I need to create for each of them a login on the server (SQL Server 2008) with password hashed in md5. How can I do that in the easiest way?

View 2 Replies

Security :: Server Error Using CreateUserWizard?

Oct 1, 2010

Using VWD 2010/Express I started by creating a new "ASP.Net Web Site" so I got a jump-start with security,master page,and other content.I connected successfully to a SQL/Server database and all was working well, a while ago.I successfully registered new users,assigned roles,etc.I went on and made many other changes to the rest of the project - the only change I made in any of the security objects was that I added a "FullName" column to the Membership table.

That was a while ago.I just tried to add a new user(haven't done that for a while) and the registration form throws the exception shown below.All other authencation forms seem to work correctly - I can still add/change roles,etc.

As part of trying to find the problem,I created a new page and just dropped the CreateUserWizard on to it with no customization(I know, the database behind it still has that additional column),and I get the same error message.Are we not supposed to make any changes to aspnet_Membership ?

(Yes - I will eventually have to remove that column and see if that makes the problem go away,but I'm addressing a different problem with permissions with my database hosting service)

An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.Exception Details: System.Data.SqlClient.SqlException: INSERT failed because the following SET options have incorrect settings: 'QUOTED_IDENTIFIER'.Verify that SET options are correct for use with indexed views and/or indexes on computed columns and/or filtered indexes and/or query notifications and/or XML data type methods and/or spatial index operations.Cannot insert the value NULL into column 'UserId', table 'DB2323_123.dbo.aspnet_Membership'; column does not allow nulls.INSERT fails.
The statement has been terminated.

Server Error in '/' Application.

INSERT failed because the following SET options have incorrect settings: 'QUOTED_IDENTIFIER'.Verify that SET options are correct for use with indexed views and/or indexes on computed columns and/or filtered indexes and/or query notifications and/or XML data type methods and/or spatial index operations.
Cannot insert the value NULL into column 'UserId', table 'DB2323_123.dbo.aspnet_Membership'; column does not allow nulls.INSERT fails.
The statement has been terminated.

View 3 Replies

Web Config Security On Shared Server?

Dec 9, 2012

My web.config contains passwords to my database and smtp and i want to tighten up the security, i want to protect the passwords fully so if a hacker or webhost employee accessed all the webserver files the passwords cannot be easily accessed

I run on a shared host so using encryption could be an issue as i havnt got full IIS access - i havnt gone down that road yet to look fully into it

I was thinking it might be easier and secure enough if i moved the connection strings & passwords from the web.config into a referenced .dll which was protected by a professional obfuscation tool

View 1 Replies

Custom Server Controls :: Design Time Markup End With />?

May 7, 2010

I'm developing a custom server control and want it to end with /> rather than with </cc1:CustCtrl>. I've tried changing the ToolboxData but it didn't really do it (I can see it initially appears like that but instantly changes to the standard <cc1:CustCtrl blah blah></cc1:CustCtrl>. When i drag a button from the toolbox to the forms markup it uses the <asp:Button blah blah /> markup, how can I emulate this?

View 3 Replies

.net - Markup Code Inside Custom Server Control?

Dec 29, 2010

I'm new to custom server controls and I'm hoping to use them to build various 'modules' for different sites I build to cut down on duplicate code.I'm familiar with custom user controls in which I can create an .ascx & .ascx.vb file which can then be imported into an .aspx page and used freely.However, with custom server controls I cannot find a way of using markup/html code. Is this possible at all or must all code be created programmatically?

View 1 Replies

Security :: How To Read A File On A Remote Server

Jul 16, 2010

filetoread = Server.MapPath("\servernamesharefile.csv")
filestream = File.OpenText(filetoread)
readcontents = filestream.ReadToEnd()

It works fine if I put the file in the local directory and use "filetoread = Server.MapPath("file.csv")", but won't do it over the UNC path.I'm guessing the problem is security related but can't find any info related to it, do I need to somehow specify a username/password somewhere ?

View 3 Replies

Security :: LoginName Turns In To The Name Of My Server And Not The Name Of The Username?

Mar 3, 2010

why when i'm loging in the loginName turns in to the name of my server and not the name of the username ... ? give some tutorials or articles about loginview.

View 2 Replies

MVC :: Security Exception When Using MVCcontrib Grid On Server

Jun 21, 2010

I am using MVCcontrib grid in my application. Everything works fine on my dev machine. When I publish it to the server and navigate to the page that renders the grid I am getting this error Description: The application attempted to perform an operation not allowed by the security policy. To grant this application the required permission please contact your system administrator or change the application's trust level in the configuration file.

Exception Details: System.Security.SecurityException: Request for the permission of type 'System.Web.AspNetHostingPermission, System, Version=, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed. and the source of the error is shown as <%= Html.Grid(Model).Columns(column => {i have added


to the web.config but still&nbsp;get the error&nbsp;

<input type='hidden' name='ID[9]' value='93970' />
<input type='hidden' name='URL[9]' value=[URL]/>
<input type='hidden' name='CAT[9]' value='DataSource Controls' />
<input type='hidden' name='BOARD[9]' value='microsoft' />
<input type='hidden' name='P_DATE[9]' value='Jan 12, 2010 09:43 PM' />
<input type='hidden' name='RANDOM[9]' value='BcIlUOXzN' />
<input type='hidden' name='REPLIES[9]' value='3' />
<input type='hidden' name='USER[9]' value='aziz' />
<p><input class=subject type='text' size='90' name='SUBJECT[9]' value='DataSource Controls :: LINQ using stored procedures and MvcContrib Grid with pagination' /><select name='INDEXED[9]'><option value='1' selected>UPDATE</option><option value='2'>DELETE</option></select>Jan 12, 2010 09:43 PM - Replies: 3 CAT: DataSource Controls<a target=_blank href=[URL]>View</a></p>
<p> <textarea rows=10 cols=100 name='POST[9]' onfocus='setSelRange(this, 0, 0)'/>All,

I have been chasing this erorr all day and coming up blank.&nbsp; I created a stored proceudre(fairly complicated logic), added it to the context, and set the return type to a specific entity type.

It generated this:

&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; &nbsp;
public ISingleResult<ServiceTemplate> usp_ServiceTemplateSelectByFkID([Parameter(Name="FkId", DbType="Int")] System.Nullable<int> FkId)
&nbsp;&nbsp;&nbsp; IExecuteResult result = this.ExecuteMethodCall(this, ((MethodInfo)(MethodInfo.GetCurrentMethod())), FkId);
&nbsp;&nbsp;&nbsp; return ((ISingleResult<ServiceTemplate>)(result.ReturnValue));

I call it from my service with the following method:

public ISingleResult<ServiceTemplate> GetByFkId(int FkId)
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; return Db.usp_ServiceTemplateSelectByFkId(FkId);

I have tested the stored procedure and it returns the results I want.&nbsp; When I make the service call from the controller, it doesn't error out, however, it should return 4 records in this instance and instead, it returns the same 4 records (repeating the first record 4 times).&nbsp;.........

View 4 Replies

Windows - Moving File Security From One Server To Another?

Apr 15, 2010

I am running windows server with asp.net websites and sql server 2008 and IIS 6. It is working fine.

Now I need to move my asp.net websites to another windows server and I have hard time setting correct file security for the new server.

Is there any way to compare or move or see difference file security between two servers?

View 1 Replies

Copyrights 2005-15 www.BigResource.com, All rights reserved