in

dotnet.org.za

South African .NET Developer Portal
All Tags » Security (RSS)

Browse by Tags

  • Marshaling SecureString Passwords to String

    You should always use a System.Security.SecureString when creating .NET APIs that handle passwords. Unfortunately many of the .NET Framework APIs do not yet use System.Security.SecureString. This will change in the future, but for now, how do you handle the marshaling of a System.Security.SecureString...
    Posted to Mark Nicholson (Weblog) by markn on 10-04-2008

  • Simple Console Password Capture Utility

    For command line utilities, that require capturing a password, you may find this C# utility class to capture a password useful. Features: 1. Allows you to specify a prompt, e.g. "Enter password: " 2. Caters for masking or unmasking the displayed password, e.g. abc123 or ****** 3. Allows you...
    Posted to Mark Nicholson (Weblog) by markn on 10-03-2008

  • SQL 2005/2008 OPEN { MASTER | SYMMETRIC } KEY Password Parameterization

    Be careful when using passwords with OPEN MASTER KEY and OPEN SYMMETRIC KEY on SQL Server 2005 & 2008. The password is vulnerable to SQL injection attacks, unless you escape all single-quote characters ('), with two single quote characters. This is because the DDL syntax for the OPEN MASTER KEY...
    Posted to Mark Nicholson (Weblog) by markn on 10-03-2008

  • Reinventing the Wheel

    We’ve needed to batten down the hatches on the application we’ve been working on to make sure that it will be secure come go live (which is today incidentally, I’ve been sitting on this post for a while) and the task fell to me to delve into the murky waters of Web Service Security (WSS in future for...
    Posted to not just another working title (Weblog) by mikegeyser on 06-02-2008

  • More details on Apples' malware, I mean browser

    Just in case you thought secretly installing malware on a machine wasn't bad enough, it appears that Apple aren't actually interested in resolving security flaws in Safari. So it's bug-ridden and they're happy with that. This has led Microsoft to take the unprecedented step of advising...
    Posted to Coding Sanity (Weblog) by codingsanity on 05-31-2008

  • The 6 dumbest ideas in Computer security

    Marcus Ranum has an article titled The Six Dumbest Ideas in Computer Security . I strongly suggest that anyone interested in security read it, and his other articles too. It's quite an old article, but someone put it on proggit and it made me remember it. In fact, I'd say that this article was...
    Posted to Coding Sanity (Weblog) by codingsanity on 04-19-2008

  • Apple push malware? Fanboys applaud

    Dunno how many of you read John Lilly's rant about Apple pushing out their Safari browser via iTunes update the other day? Basically he was rightly upset that Apple were using what should be an update and patch delivery mechanism to subtly trick users into installing their Safari web browser. His...
    Posted to Coding Sanity (Weblog) by codingsanity on 03-28-2008

  • Nifty Software Guidance Wiki

    If you are looking for some short and to the point guidance in the field of software engineering, have a look at the " Guidance Share ". J.D. Meier has spent some of his vacation time putting together a summary of some of his experiences gained in the trenches revolving around the fields of ...
    Posted to YahBlog - Explore with new eyes (Weblog) by yah on 02-26-2008

  • .Net Security

    Before it's time to go home on the this Friday afternoon I quickly printed some of the pages of .NET Security written by Richard Grimes . After a quick glance I seems it will be worthy bedtime reading.
    Posted to Hannes's Mind Maze (Weblog) by hannes on 08-03-2007

  • eNaTIS Security

    Well, well, well, it appears that we will need a separate topic for this. My eNaTIS Performance post was very popular, with a lot of people expressing their dissatisfaction with the system. As before, I'd like to try and keep this to facts and figures, however in this case that may be difficult....
    Posted to Coding Sanity (Weblog) by codingsanity on 07-05-2007
Page 1 of 4 (37 items) 1 2 3 4 Next >
Powered by Community Server (Commercial Edition), by Telligent Systems