Monthly Archives: June 2005

My Monad Command Prompt

With some help from Lee, i was able to reproduce my favourite prompt for cmd.exe (which is $P$_$+$G – thanks to Craig for that) in Monad. Just add the following to your ‘profile.msh': function prompt { “MSH ” + (get-location).Path … Continue reading

Posted in Uncategorized | Leave a comment

Centrally configure ClickOnce Trust Manager

The TrustManager is a piece of code that gets called when a ClickOnce application gets started. You can find the default implementation in System.Security.Policy.TrustManager. The heart of the TrustManager is a method called DetermineApplicationTrust(). You hand in all needed information, … Continue reading

Posted in Uncategorized | Leave a comment

Automatic Distribution of Authenticode Certificates

In my previous post i talked about how to get a code signing cert for Authenticode or ClickOnce. In a corporate environment every client has to trust this cert (e.g. if you want to suppress the trust question in ClickOnce … Continue reading

Posted in Uncategorized | Leave a comment

W2K3 CA and Code Signing Certificates

If you want to use the trusted deployment feature of ClickOnce (or just plain Authenticode), you need a certificate with an intended purpose of at least “code signing”. You have 3 options Generate a self signed certificate using makecert.exe (only … Continue reading

Posted in Uncategorized | Leave a comment

Monad Beta 1

Beta 1 of the Microsoft Shell (code-named Monad) is available for download at beta place. It is compatible to B2 of .NET 2.0. yummie. Download Instructions (via Lee Holmes) Go to http://beta.microsoft.com Log in using the guest ID, mshPDC Follow … Continue reading

Posted in Uncategorized | Leave a comment

Lifetime of persistent FormsAuth Cookies

A student asked me about the expiration time of the .ASPXAUTH cookie if you call FormsAuthentication.RedirectFromLoginPage(name, true). This is not really new info, but i double checked on .NET 2.0 B2 – and tracked down the following line of code … Continue reading

Posted in Uncategorized | Leave a comment

ShowContexts (.NET 2.0 Version)

In ASP.NET you have to deal with three identities (Process, Thread and Managed Identity).  In DevelopMentor‘s “Essential .NET Security” course i use this little tool, originally written by Keith, to show these identities. I updated the code to .NET 2.0. You … Continue reading

Posted in Uncategorized | Leave a comment

Peter Gutmann

ah – and speaking of Peter Gutmann – this is a great resource: http://www.cs.auckland.ac.nz/~pgut001/tutorial/index.html  

Posted in Uncategorized | Leave a comment

Interesting Read about XML Security

http://www.cs.auckland.ac.nz/~pgut001/pubs/xmlsec.txt From Peter Gutmann, found via valery’s blog.  

Posted in Uncategorized | Leave a comment

ASP.NET 2.0 Health Monitoring is Goodness

The new Health Monitoring framwork in ASP.NET 2.0 is very cool. Besides that ASP.NET itself uses it to emit all kinds of useful status information, you can build your own WebException classes and connect them via configuration to the EventLog, … Continue reading

Posted in Uncategorized | Leave a comment