|
Thank you. I changed the naming formula, it's coming properly now.
|
|
|
|
|
My IA department has run a security can on our MVC application and the following error was displayed: Information disclosure vulnerabilities are leaks of information from an application which are used by the attacker to perform a malicious attack against the application.
Applications should not disclose information not required for the transaction (e.g. a web application should not divulge the fact there is a SQL server database and it's version) This provides attackers additional information which they can use to find other attack avenues, or tailor specific attacks, on the application.
The designer will ensure the application does not disclose unnecessary information the users.
I am new to IA application security fixes so any recommendations would be great!
Thanks,
Steve Holdorf
|
|
|
|
|
|
My IA department has run a security can on our MVC application and the following error was displayed: Password transmitted in clear text or with an unapproved format are vulnerable to network protocol analyzers. These passwords acquired with the network protocol analyzer can be used to immediately access the application. The designer will ensure the application transmits account passwords in an approved encrypted format.
I am new to IA application security fixes so any recommendations would be great!
Thanks,
Steve Holdorf
|
|
|
|
|
That one sounds like they're recommending you use SSL / HTTPS.
Depending on the nature of your site, you might get away with a self-signed certificate, or a free basic certificate from StartSSL[^].
If the site collects or displays personal or financial information, then you should probably look at acquiring an Extended Validation certificate.
"These people looked deep within my soul and assigned me a number based on the order in which I joined."
- Homer
|
|
|
|
|
My IA department has run a security can on our MVC application and the following error was displayed: Resource Information in code can easily advertise vulnerabilities to unauthorized users. By placing the references into configuration files, the files can be further protected by the permissions and will be separated for ease of updating.
I am new to IA application security fixes so any recommendations would be great!
Thanks,
Steve Holdorf
|
|
|
|
|
I have to implement paging in a list which I'm getting via AJAX call as shown in following link(screen shot contains only paging):
http://i.stack.imgur.com/95TbM.png
I'm using Entity Framework approach for data access from database.
So I just need trick to fetch record in EF.
How to implement such type of paging through AJAX?
Thanks
|
|
|
|
|
|
I dragged a grid view control and put into my design page.Based on the user's input in text box i will create rows in java script and append to it.But grid view is not rendered in HTML so that i cannot append the rows to it.
|
|
|
|
|
GridView is a data control to display data that was supplied on the server! As you do not give no data source for the control it renders a simple <div> element with no content. If you want to do client side manipulation you probably need not use Web Form and its controls...
I'm not questioning your powers of observation; I'm merely remarking upon the paradox of asking a masked man who he is. (V)
|
|
|
|
|
Thanks..If I bind a data table to grid view in server side then only it is rendered as HTML table in client side otherwise it renders as div as you said.
|
|
|
|
|
|
I need to make a change to an existing C#.net 2010 web form application that displays reports (letters) in ssrs 2008 reports based upon how many based upon how may days delinqent a particular customer is. The information for each letter (report) if obtained from a string field called strLetter. The string field called strLetter and the field contains the information in html format.
When the existing ssrs reports are running the users are able to select parameter values to run the report. One of the parameters is to select how may days delinquent a customer is (5 days, 15 days, 20 days, 30 days, and 90 days)..
Right now there are letters for 5 days, 15 days, 20 days, 30 days, and 90 days that go directly to the customer. Now I need to create an additional 20 day letter that goes to my company's attorney. This means that I have 2 lettersers that need to be generated at the 20 day mark (1 for the customer and 1 for the attorney).
To solve this situation, I have the following questions:
1. Is there a way to create the 2 20 day letters by using the existing 20 day drop down list? In other words, in the ssrs report can I create a page break between the 2 20 reports (letters)? Can I have something like:
strstrLetter value
page break,
strLetter value2.
If so how would I accomplish this goal?
2. If the above is not a possibility can tell me how to accomplish this goal in vb.net to setup the html or other possbility? I only know 'basic' html.
|
|
|
|
|
I'm calling in the ItemDataBound event of repeater control an object that uses the value of the user's session, but I get error, it seems that the object can not to be created and when I use this same object in subsequent events at load, I haven't problem, I need to know when to start the session's variables at exist?.
|
|
|
|
|
Calling?! the ItemDataBound event?! How that's done? It's probably better you show your code to us!
I'm not questioning your powers of observation; I'm merely remarking upon the paradox of asking a masked man who he is. (V)
|
|
|
|
|
Hi, sorry, my English is wrong. In this link I explain better.
|
|
|
|
|
You have already posted this question in QA[^]. Please do not repost your question in other parts of the site; it only serves to annoy the people who would otherwise help you.
"These people looked deep within my soul and assigned me a number based on the order in which I joined."
- Homer
|
|
|
|
|
|
I have seen the the article Session Time Out Warning Message Using jQuery in ASP.NET[^]
1- I tried it for Master/Content pages by putting the content of the SessionInjQuery.aspx inside the Masterpage.master
<asp:ContentPlaceHolder id="head" runat="server"> and call it from the page loading event. However it didnt work.
2- I want to load the code once I make a login from my Login.aspx content page.
3- I dont want to have warning. What I need is to directly turn it to the session expired screen.
How can I adjust the code to perform the above things. I can show my files directory structure.
Thanks alot
|
|
|
|
|
If you have questions about an article, then use the discussion forum at the bottom of that article: Link[^]
The author of the article is usually the person who is most likely to be able to help you with their code.
"These people looked deep within my soul and assigned me a number based on the order in which I joined."
- Homer
|
|
|
|
|
I need to have some server-generated javascript files, so I decided to create *.aspx pages that return the application/javascript mime type. This part is working, but now I am attempting to add a route to the routing table so the client is unaware of the technology used to generate the javascript file (e.g., I want to reference a *.js file from the client, then route the request to the appropriate *.aspx page). I added the following to RouteConfig.cs:
routes.MapPageRoute("Enumerations", "Scripts/Constants/Enumerations.js",
"~/Scripts/Constants/Enumerations.aspx");
When I include the script using the *.aspx file, everything works as expected. However, when I attempt to access the *.js file, I get a 404/Not Found error. Is there a way to make the file publicly available as a *.js file?
Sounds like somebody's got a case of the Mondays
-Jeff
|
|
|
|
|
The issue is that IIS sees a request for a *.js file, which isn't mapped to an ASP.NET handler, and so it doesn't invoke the ASP.NET pipeline. The routing module never gets the chance to see the request and route it to your real handler.
There seem to be three basic options to fix this:
1. runAllManagedModulesForAllRequests="true"
Modify your web.config to tell IIS to invoke the full ASP.NET pipeline on every request.
<system.webServer>
<modules runAllManagedModulesForAllRequests="true" />
</system.webServer>
This will potentially have an impact on the performance of your site.
2. Remove the preCondition on the UrlRoutingModule-4.0 module.
<system.webServer>
<modules>
<remove name="UrlRoutingModule-4.0" />
<add name="UrlRoutingModule-4.0" type="System.Web.Routing.UrlRoutingModule" preCondition="" />
</modules>
</system.webServer>
The performance impact won't be as great as option 1, but there will still be an impact, as the routing module will now fire for every request to the site.
3. Custom handlers
Explicitly map the requests to an ASP.NET handler:
<system.webServer>
<handlers>
<add
name="dynamic-js" verb="GET,HEAD" path="scripts/*/*.js"
type="DynamicScripts.CustomScriptHandler, DynamicScripts"
preCondition="integratedMode"
/>
</handlers>
</system.webServer>
This will have better performance that the other two options. The down-side is that you have to create an IHttpHandler or IHttpHandlerFactory class to handle the requests.
You might be able to get away with using System.Web.UI.PageHandlerFactory , but I haven't tested it.
http://svenaelterman.wordpress.com/2011/01/31/using-asp-net-4-0-extension-less-routing-on-iis-7-5/[^]
http://www.hanselman.com/blog/BackToBasicsDynamicImageGenerationASPNETControllersRoutingIHttpHandlersAndRunAllManagedModulesForAllRequests.aspx[^]
"These people looked deep within my soul and assigned me a number based on the order in which I joined."
- Homer
|
|
|
|
|
hi this is vinny, how to integrate silverlight in Asp.NET like as it is used in Bespoke Digital Media. What necessary tools are required for that and what DLL file are required to add this control in Visual Toolbox.
http://www.bespokedigitalmedia.in
|
|
|
|
|
how to get in project any one boy give me a answer and
I get on phone number notifications?
|
|
|
|
|