I'm currently working on a system that is made up of multiple Databases.  The
first database contains all of the user information; such as UerName,
password (stored as  a hash) etc...  The other databases are used to provide
different services, for example one of the databases ...

I have a .NET 2.0 UserControl that is being host in IE. The control has
an unmanaged ActiveX 3rd-party control on it that I have to use. Of
course, I did all the necessary steps to create an interop around it
(strong name and all).

One thing I noticed in first release of .NET is that programs stored on My
Computer were granted fulltrust regardless its location effectivly equivelant
to an unmanaged application.  My thought is that assemblies in temp
directories, my documents, etc, can in general be assumed ...

Can I read the strongname or public key of an application in code? I want to
try and check the strong name of a calling assembly but I can't see how to do
this.

Can anyone tell me how the File.Encrypt method works? Any technical details?
Which algorithm will be used? Key management?
Thanks and Regards
Dominik

Hi is it possible to impersonate another domain user using
System.Security.Principal.WindowsImpersonationContext
with the web browser component so that users can browse as themselves
without logging on the machine or the application?

My web app is not on a secure server. However, before getting to my app,  a
user is supposed to logon thru a secure server.  Is there any way to tell
that the user has been approved and  is coming from the secure site rather
than just typing the url in their browser?

My code below allows me to see if the user is in Active Directory.  I need
to take it a step further and see if they are in a specific group.  Any ideas
how to achieve this:
       Dim Success As Boolean = False

 I'm trying to apply role-based security to a .NET remoting server. I'm
using a secure TcpServerChannel with security turned on (identification only,
I don't want to impersonate the client), and I want to limit access to a
remoted method, like so:

I am loading a private .pfx key using the X509Certificate2 class by the
following line
X509Certificate2 x509 = new X509Certificate2(PrivateKeyFile,
PrivateKeyPassword);

Are there any public examples of applications deployed by ClickOnce on the web?
(preferably ones that have the deployoment manifest Authenticode-signed).
Before deploying a few of my .NET 2 apps that way, I want to see what the
GUI user experience looks like.

Using .NET 2 managed code only, what is the best that
can be done security-wise in collecting a password from
the user (as console or some pswd control dialog) and
passing to a function (like X509Certificate.Import)