Hello Gurus,
Here is a riddle for you; I will appreciate if someone could explain
the answer as well. (I encountered the following on a .net security
exam)

I have written an application that works fine in 2000 environment. I
am now trying to deploy this onto a 2003 server.
The app has a browse button that shows a simple fileopen dialogue for
the users to choose a network folder. However, when this is clicked on

i need to parse an existing pkcs#10 request and show its contents in human
readable format.
Is this possible in C# with CAPICOM, CryptoAPI ?
I tryed the XENROLL control but it seems that it only allow to create a

I've created an Enterprise Security policy for the framework and am
distributing the file via a GPO / MSI package.  I have already done this
successfully.  
The problem I have is that Microsoft's documentation states that only

I have a PKCS#7 signed message, base64 encoded, from which i want to
extract the original message in plain text, the signature and the
certificate used for signing.
Is this possible or am I out of line?

Have an ASP.NET app that is having trouble accessing a file on a DFS share;
getting "access denied" errors. Using impersonation to ensure the access is
done under a domain account that has access, but no luck. Any
thoughts/tips/gotchas that can be shared, please do. Am thinking ...

is it possible to define a Fulltrust assembly running from a network share
with user level security policies?
The local intranet machine CAS policy seemed to be also used.
When I define a machine level policy it runs well, but users must have

I am still having problems with using Windows Authentication for my ASP.NET
site on our intranet.  Could someone walk me through the steps to using an
Active Directory group for users to get to my site?  I only want a certain
AD group to be able to use my site.  The problem I have ...

i have to encrypt a 17 char lenght string, which contains just number... ive
decided go with RijndaelManaged and 256bit key size. i know choosing right
block size is also an important issue. RijndaelManaged provides 128 and
256bit block sizes. but my plaintext is just 17 bit ...

I have a web service that uses RijndaelManaged to decrypt some data passed
into the web service.  This has worked at my service providers hosting
environment for at least 6 months.  However, within the last couple weeks it
has stopped working.  I have NOT changed any code.  In fact ...

I'm trying to impersonate a local account in a windows service. Basically I
need to have two different identities in the service - one to talk to sql
server (integrated auth) and another for another network resource.
When the service identity is LocalSystem everything works fine. ...

I use the formsauthentication.signout in my logout button, than redirect the
user to the login page. I also clear all session variables.
I have just noticed that if you copy the url of one of the pages in the app,
and paste it after you are logged out, you will be taken back to ...

I have an application being deployed using no-touch deployment. The folder
where the app is requires the user to login using there windows user/pw in
order to launch the application.
Is there anyway of getting that users name?

I found the followin example of how to encrypt a text:
public static string Cript(string text)
{
Byte[] clearBytes = new UnicodeEncoding().GetBytes(text);

have been scouring the internet and reading several .Net security books
trying to get a handle on CAS and how we could easily implement it.  Our shop
is small (7 programmers) and we are mainly writing ASP.Net apps.  We are in
control of our own intranet and internet servers.  ...