I have enabled forms authentication on an IIS 6 W2k3 server to protect access
to the application files until authenticated.
The actual application apart from the login/logout files is .cgi based so I
have added a “Wildcard Application Map” entry

Is it possible, as an added (fairly paranoid) security measure, to encrypt
the content of, say, an .aspx file on the server?
Best regards
Loane

I am working on an asp.net application which requires forms authentication as
the method for authenticating the web application using the underlying Active
Directory as the user store.  
I have created my Forms Authentication process using the methods described

I am planning a website which reqires this feature: it allows registered
users to upload and/or download files (like *.doc, *.ppt etc.) but not  
everyone can download every files. some files are restricted to certain users
only. that means only certain users can download certain ...

Hello I also posted this message under dotnet.security.
What I have is a web application that shows the user their files in a
protected location. The user can then select a file and move it to another
server over unc. The user is logged in via windows basic authentication with

I have a situation where I would like to use forms authentication and
windows authentication combined.  Basically, I would like to use a form to
get the user's ID and password, and then validate those against the domain
just like IIS does when using Windows authentication.  Also ...

I have an asp.net web application written in c# that uses Forms
Authentication to authenticate against our Active Directory. I based the
authentication code on the How To found on MSDN
(http://support.microsoft.com/default.aspx?scid=kb;en-us;326340)

In my ASP.NET application, all the images files are stored on a machine other
than my web-server. In a webform i am accessing the image files stored in
that folder in the remote machine. Folder path is configurable in the
web.config file. The webserver and the folder machine in ...

What are the security risks to grant ASP.NET user write access to web.config?
I am working on a project in which I am required to update web.config at the
runtime, basically modifying access to different directories.
Any suggestion will be greatly appreciated.

I can use for security authentication the information about user and group
who I have stored in ADAM (Active Directory Application Mode)  from my
ASP.NET application?
Thanks and sorry for my english.....

Hi,
Is there a way to update any user info (properties) on the AD, through an
ASP.net code with c#. With only filtering on any user name, without password.
Please provide a clear code to do that.

Hajo,
I have a few questions about above method.
1. AFAIK it is symatric encryption, what kind of
   algorithm(name) is used in this method?

I have a web server with 2 domain names, one IP and a single SSL cert.
Domain name one has the SSL cert, but domain name two doesn't.
domain name one is the actual domain name of the server, domain name two is
more of an alias to one site on the server.  Therefore, a url on domain ...

Example: A webpage exists that allows you to fill out a form and click
submit. The page next page displays the information found from your search
criteria. The form includes information like Fname, Lname, Address and Zip.
I want to programmatically fill out the form and submit ...

I have a winforms user control that I need to use in our web page. The
control connects to a remoting object.
When I try and make the initial connection I get an error message:
"The application attempted to perform an operation not allowed by the