Wrox Programmer Forums
| Search | Today's Posts | Mark Forums Read
ASP.NET 2.0 Professional If you are an experienced ASP.NET programmer, this is the forum for your 2.0 questions. Please also see the Visual Web Developer 2005 forum.
Welcome to the p2p.wrox.com Forums.

You are currently viewing the ASP.NET 2.0 Professional section of the Wrox Programmer to Programmer discussions. This is a community of software programmers and website developers including Wrox book authors and readers. New member registration was closed in 2019. New posts were shut off and the site was archived into this static format as of October 1, 2020. If you require technical support for a Wrox book please contact http://hub.wiley.com
 
Old February 13th, 2007, 02:16 PM
Friend of Wrox
 
Join Date: Mar 2006
Location: , , Portugal.
Posts: 310
Thanks: 0
Thanked 0 Times in 0 Posts
Default Membership security

I had a custom classes for my validation logins, private pages, etc.

I'm going to jump to asp.net 2, But I not yet decided which of them I'll use.

My fear is the fact of many people to know the architecture of membership of asp.net 2 and to be more easy to arrange a hole to enter in the system.

With my all system, hidden by dll files, i think it's more difficult to a hacker understand my architecture and find a hole...

I'm i right?

 
Old February 13th, 2007, 10:39 PM
Friend of Wrox
 
Join Date: Mar 2006
Location: , , Portugal.
Posts: 310
Thanks: 0
Thanked 0 Times in 0 Posts
Default

One easy way to see if a webmaster use membership class is:
Try to login with any fields and if the error page is "acessdenied.aspx?loginfailure=1" he know that webmaster use membership...

It's possible change the querystring? In other words, it's possible to change "...?loginfailure=1" to "...?Error=1"

Thanks!
Max







Similar Threads
Thread Thread Starter Forum Replies Last Post
want to manage membership sumit_0 ASP.NET 2.0 Basics 0 April 25th, 2008 06:31 AM
Code Access Security & Role Based Security robzyc C# 6 April 11th, 2008 02:31 AM
Membership.UpdateUser() dcct84 C# 3 October 3rd, 2007 02:27 PM
Membership Provider bmains ASP.NET 2.0 Basics 4 April 13th, 2006 04:10 PM
System.Security.SecurityException: Security error coolcatjk Pro VB.NET 2002/2003 4 March 2nd, 2006 06:00 PM





Powered by vBulletin®
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
Copyright (c) 2020 John Wiley & Sons, Inc.