Monthly Archives: November 2004

Advanced Developer Conference

i arrived at ulm (well, to be exactly it is “neu-ulm” which is apparently a complete different thing for my car navigation….). it is snowing in germany, which is kind of mad since we had 12°C 3 days ago – … Continue reading

Posted in Uncategorized | Leave a comment

Common ASP.NET Security Issues

when browsing through the Microsoft ASP.NET security newsgroups – 85% of all problems seem to be identity, impersonation, delegation and resource access problems (over and over again). Microsoft Support has compiled a page called “Common Security Issues when Accessing Remote Resources with … Continue reading

Posted in Uncategorized | Leave a comment

Security and Multi Threading

A lot of the security primitives in .NET depend on extra information attached to the current thread, e.g. CurrentPrincipal, CAS Markers and Impersonation Tokens. Ever wondered what happens when you spin off a new thread – is this vital security … Continue reading

Posted in Uncategorized | Leave a comment

PasswordEntropyValidator for ASP.NET

you all know that you should reject weak passwords in your applications… to make this task easier i wrote a new validator control for ASP.NET – just set the minimum amount of required entropy bits and validate your password textboxes. PasswordEntropyValidator.zip … Continue reading

Posted in Uncategorized | Leave a comment