Skip to content

Feed aggregator

Known Wrongs In Securing Software

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn about "known wrongs" in securing software.
Categories: Communities

ASP.NET Core 1.0 MVC Model

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn about ASP.NET Core 1.0 MVC Model.
Categories: Communities

Setup Internet Information Services (IIS) Web Server In Azure

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn how to setup Internet Information Services (IIS) Web Server in Azure.
Categories: Communities

Build Travel Agent Application Using LUIS API In Microsoft Cognitive Services - Part One

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn how to build travel agent application using LUIS API in Microsoft Cognitive Services.
Categories: Communities

Site Columns Through SharePoint Hosted Apps

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn about Site Columns through SharePoint Hosted Apps.
Categories: Communities

Upload And Save Multipart/Form-Data In WebApi 2

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, I'll explain how to upload multipart/form-data using Web API 2.
Categories: Communities

ASP.NET Web API Content Negotiation

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article you will learn about ASP.NET Web API Content Negotiation.
Categories: Communities

Purpose Of ValidateAntiForgeryToken In MVC Application

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn about the purpose of ValidateAntiForgeryToken in MVC application.
Categories: Communities

How To Export An Azure SQL Database With The Azure Portal

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn how to export an Azure SQL database, using the Azure Portal.
Categories: Communities

Introduction To Docker

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn about Docker, the new, fast, and reliable containerization technology.
Categories: Communities

Computer Vision AI In Simple Steps

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn how to Integrate Computer Vision API to integrate picture recognition in your app.
Categories: Communities

Background Tasks In Universal Windows Program - Part Eight

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn how to implement the Progress, Cancel, and Completed event.
Categories: Communities

Basics Of WCF Routing

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn about the basics of WCF Routing.
Categories: Communities

How To Change Your Windows Login Password In Windows 10

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn how to change your Windows login password in Windows 10.
Categories: Communities

How To Brand Your Office 365 Sign In Page

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn how to brand your Office 365 Sign in Page.
Categories: Communities

FusionCharts AngularJS Plugin

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
In this article, you will learn about FusionCharts AngularJS Plugin.
Categories: Communities

Tips To Be Productive While Working From Home

C-Sharpcorner - Latest Articles - Sat, 09/24/2016 - 08:00
Here is a list of some tips to be productive while working remotely from home.
Categories: Communities

Secure ASP.NET ViewState

Visual Web Developer Team Blog - Fri, 09/23/2016 - 16:00

During an appearance on the .NET Rocks podcast last week, a question was raised about securely sending information through ASP.NET ViewState.  I responded to the question by indicating that the typical security concern for web content is not to trust any content submitted from the web, including ViewState.  After that podcast was published, several of my colleagues corrected me: in ASP.NET 4.5 the encryption of ViewState received a significant rewrite that addressed this issue and effectively makes ViewState very secure.

Encrypted and MAC’d

In older versions of ASP.NET, there was an option to “EnableViewStateMac” that would allow you to configure whether ViewState was protected against tampering with a Message Authentication Code (MAC – true setting).  As a secondary configuration option, ViewState was encrypted if the “ViewStateEncryptionMode” was set to true.  Beginning with ASP.NET 4.5.2, this configuration is ignored and all requests are both encrypted and protected with a Message Authentication Code.  Security advisory KB2905247, which was sent to all Windows machines on a patch Tuesday in September 2014, set ASP.NET to ignore the EnableViewStateMac setting and use the ASP.NET 4.5.2 encryption settings in all versions of ASP.NET going back to ASP.NET 1.1.  Troy Hunt has a magnificent blog post describing how ViewState MAC works if you are interested in the details.

Improved Encryption Pipeline

With the ASP.NET 4 release, you could replace the symmetric encryption and message authentication algorithms used by the cryptographic pipeline within ASP.NET request processing.  You could change the algorithm by setting a decryption and validation attribute on the machineKey element in the machine.config file.  More details on this configuration can be found in the MSDN documentation.

You can force your Windows web server to use the updated ASP.NET 4.5 encryption capabilities by applying a compatibilityMode attribute to the machineKey element in machine.config like this:

<machineKey compatibilityMode="Framework45" />

Alternatively, you can apply a targetFramework attribute to the httpRuntime element in web.config, as the updated ASP.NET project templates do:

<httpRuntime targetFramework="4.5" />

More information about the updates to ASP.NET Encryption and ViewState are available online.

Categories: Companies

ReSharper Ultimate 2016.3 EAP opens

JetBrains .NET Tools Blog - Fri, 09/23/2016 - 11:33

We have just opened ReSharper Ultimate 2016.3 Early Access Program, and if you like using the latest technology, go ahead and download the first build.

Changes include further evolution of TypeScript support, more ways to inject languages, initial support for C# 7.0 and .NET Core unit tests.

For details on what’s inside, expect another blog post early next week.

Categories: Companies

Data Binding To JSON Data In AngularJS Datatable

C-Sharpcorner - Latest Articles - Fri, 09/23/2016 - 08:00
In this article, you will learn about Data Binding to JSON Data in AngularJS Datatable.
Categories: Communities