I've got an ASP.NET web application which uses Windows security with a SQL
Server database.  I want to use the application pool identity to make the
connection to the SQL server database.  If I set the authentication tag to
None and impersonation to false I get the following:

The document explains how the sign out procedure works with a page that
contains image links to the sign out url of each application that the user is
signed on to. If any of the signout pages fail, we get a broken image and
with the help of javascript it gets replaced with a red ...

OK I need some help and/or opinions.
I'm running an ASP.Net 1.1 app on a Windows 2000 Web Server.
I want to allow a User to browse through a collection of documents,
images, etc that are stored in a SQL Server 2000 database. During the

I was wondering if anyone knows if the .NET framework has a library or
methods that I can use to diallow users from entering HTML tags and more
importantly JavaScript into textboxes and being stored in the database.
Thank you in advance.

I'm just curious about the use of cookies in forms authentication. The
username and roles are stored in the encrypted cookie, but if a user manages
to crack this cookie - will he be able to modify his own username and roles?
Why doesn't ASP.NET simply use an ordinary session, with ...

I am referring to this article in MSDN :
http://msdn.microsoft.com/library/en-us/secauthn/security/logonuser.asp
While creating folder on the remote machine, we are specifying the UNC path
as per the example. But we get this error "could not find a part of the

"Microsoft has posted guidance that protects against a reported
vulnerability in all versions of ASP.NET that could allow a Web site visitor
to view secured content by using specially crafted requests to a Web server.
"

   How can I accomplish multiple authentication modes in one application?
   I have the following scenario:
   - A company, X, has some employees
   - Those on rolls have an AD account

I only want the authorized user to access the files (e.g. excel and pdf
files) in one directory with the
Form authentication. How can I do?

When I run my application , the LogonUser method fails the exception is
"LogonUser failed with error code :1314".
I know the error is because of some privileges .
I am using Windows 2000 sp4. I have not enabled the  SE_TCB_NAME previlege.

I have a web app that uses dpapi in user mode.  It's important that the keys
are usable across more than one machine - in case of disaster recovery, and
scaling path.
On a small test lan running windows 2000 and xp, I have this working - dpapi

I got the error message below when I try to open a connection with code:
Dim connection As New OdbcConnection("Driver={Microsoft Text Driver (*.txt;
*.csv)};DBQ=C:\Inetpub\aesd")
connection.Open()

We are looking to implement Single Sign On (SSO) for our intranet and other
internal  applications.
Our plan is to have an ASP.NET “portal page” which will examine the
WindowsIndentity of the IIS-authenticated user, and present links for the

There is lots of discussion of security issues and authentication techniques,
pros/cons of different technologies and patterns, etc.
I'm looking for "Best Guidance" for a web site that will be available to the
public, with a login using username/password.  FormsAuthentication ...

I have a .NET assembly which utilizes the System.Management classes to
retrieve information about the computer. When run under ASP.NET, I can use
this assembly with no problems. But now I'm trying to use with from within
classic ASP. The assembly is strongly-named and I've ...