Wrox Programmer Forums
|
ASP.NET 1.0 and 1.1 Basics ASP.NET discussion for users new to coding in ASP.NET 1.0 or 1.1. NOT for the older "classic" ASP 3 or the newer ASP.NET 2.0.
Welcome to the p2p.wrox.com Forums.

You are currently viewing the ASP.NET 1.0 and 1.1 Basics section of the Wrox Programmer to Programmer discussions. This is a community of software programmers and website developers including Wrox book authors and readers. New member registration was closed in 2019. New posts were shut off and the site was archived into this static format as of October 1, 2020. If you require technical support for a Wrox book please contact http://hub.wiley.com
 
Old January 10th, 2007, 02:32 AM
Registered User
 
Join Date: Dec 2006
Posts: 2
Thanks: 0
Thanked 0 Times in 0 Posts
Default .net security model

hiii friends..
this z wth respect to asp.net security..as far as i know in form authentication mode we are bound to use security socket layer(SSL)since text z traferred between client and server as pure html text..
So in that case we have to use https:// instead of http://..well my doubt z that while opening gmail or yahoo mail why we r not using http:// though it uses a form authentication mode for security purpose..
         Waiting keenly for ur reply..bye-2.

 
Old January 10th, 2007, 03:51 AM
Friend of Wrox
 
Join Date: May 2005
Posts: 227
Thanks: 1
Thanked 7 Times in 7 Posts
Default

rahul:
You should check with the IT Security Manager of the company to establishe and understand how emails are classified. Most companies, due to the Sarbanes-Oxley Act of 2002 MUST have a Security Policy in place. Emails are usually classified as Confidential, where as some transactions are classified as Sensitive and/or Critical. Also with emails, companies can disallow attached files of different extentions as in .exe, .zip. However users get around this by using extensions .ex_ or .zi_ . Some companies will not allow files over a certain size as in 1-5Meg. To get around this, one had to call the Security Officer to get an "OK" to allow file transfer.

The major issue here is EMAILS CANNOT BE AUTHENTICATED. One cannot for sure garauntee that because this email has my unique name, for peace95@yahoo.com, was sent by me. This was shown to me as a test: a co-worker was at one pc and sent an email to another co-worker and the email looked as if it was sent by me.

As I said earlier, check with the IT Security Manager or CIO (Chief Information Officer) for the IT Security Policy in place.

Hope this helps.





Similar Threads
Thread Thread Starter Forum Replies Last Post
graphical model of ADO.NET zdu Visual Basic 2005 Basics 0 March 31st, 2008 05:41 AM
.NET model vs. pre .NET model. raychoudhury BOOK: Beginning Visual Basic 2005 ISBN: 978-0-7645-7401-6 0 January 11th, 2007 06:11 AM
.net security model rahul.agarawal ASP.NET 1.0 and 1.1 Professional 1 January 11th, 2007 12:36 AM
asp.net push model for crystal reports ewood BOOK: Professional Crystal Reports for VS.NET 2 February 4th, 2005 10:01 AM
asp.net push model for crystal reports ewood Classic ASP Basics 0 January 7th, 2005 02:12 PM





Powered by vBulletin®
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
Copyright (c) 2020 John Wiley & Sons, Inc.