What to do When IIS MMC doesn’t do the work

for example- if you want to use WCF and windows integarted security you will need to conifgure the IIS for windows integrated authentication. even when you do that you can get an execption like: System.ServiceModel.ServiceHostingEnvironment+HostingManager/27836922  Exception: System.ServiceModel.ServiceActivationException: The service ‘/internetbanksignon.svc’ cannot be activated due to an exception during compilation.  The exception message is: Security settings…

7

Where is my private key ?

A lot of errors are coming up while working with X509. there is a lot of confusion of where do I need to store the certificate ? where is my private key ? the common error is that developers installs the private key to a location that the program not allowed to access. It can be…

2

WCF Security References

WCF security http://msdn2.microsoft.com/en-us/library/ms732362.aspx WCF with x509 http://msdn2.microsoft.com/en-us/library/ms733137.aspx Using client credentials http://www.theserverside.net/tt/articles/showarticle.tss?id=SecuringWCFService Delegation and Impersonation with WCF http://msdn2.microsoft.com/en-us/library/ms730088.aspx   Specifying the Identity of a Service for Authentication  http://msdn2.microsoft.com/en-us/library/ms733130.aspx   X509 – http://blogs.msdn.com/suwatch/default.aspx client certificates – http://msdn2.microsoft.com/en-us/library/ms731899.aspx wcf and x509 – http://blogs.msdn.com/suwatch/archive/2007/04/06/x509-and-wcxf-security.aspx x509 between services : http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=164756&SiteID=1 WCF team blog – http://wcf.netfx3.com/blogs/wcf_team_bloggers/ IIS certificate authorization – http://staff.newtelligence.com/sergeys/WCFIISCertificatesAuthorization.aspx…

2

WCF Supporting Tokens

The Supporting Tokens sample demonstrates how to add additional tokens to a message that uses WS-Security. The example adds an X.509 binary security token in addition to a username security token. The token is passed in a WS-Security message header from the client to the service and part of the message is signed with the…

1

Download Network monitor 3 Now !

Download Microsoft Network Monitor (netmon) 3.0 Microsoft Network Monitor 3.0 is a brand new protocol analysis tool. It has been under development for about 2 years at Microsoft. You are welcome to try it out and provide feedback to us. Key features of Microsoft Network Monitor 3.0 include: A completely new user interface Real time…

1

how to get AlternativeName and UPN from X509 certificate

using X509NameType Enumeration  you can extract all the fields from a x509 certificate. this enum is new for .net 2.0 here is the code: using System;using System.Security.Cryptography;using System.Security.Permissions;using System.IO;using System.Security.Cryptography.X509Certificates;class CertSelect{    static void Main()    {        try        {            X509Store store = new X509Store(“MY”,StoreLocation.CurrentUser);            store.Open(OpenFlags.ReadOnly | OpenFlags.OpenExistingOnly);            X509Certificate2Collection collection = (X509Certificate2Collection)store.Certificates;            X509Certificate2Collection fcollection = (X509Certificate2Collection)collection.Find(X509FindType.FindByTimeValid,DateTime.Now,false);            X509Certificate2Collection scollection…


Netmon 3 – Nmcap.exe

Network monitor 3.0  has a command line tool as well to capture traffic. You can use the ‘Nmcap.exe’ tool to capture frames without the GUI. This tool is available in the Network Monitor 3 installation directory. I’m looking for a way now to intercept the traffic on real time – like breakpoints on fiddler more…


XSS and HTML injection attacks

just copy and paste to implement an XSS. sources can be found here : http://ha.ckers.org/xss.html


S E C U R E Acrostic

Seamless The more integration work that has to be done to get a component to work, the more opportunities to introduce unintended errors which can result in security vulnerabilities.  Secure code should therefore not require any special skills to incorporate. It should just be the normal way  of doing things. Easy to Understand Complexity breeds…


reflector 5

check out the new version of reflector here