Don’t trust user supplied data – Real World Example

Suppose I have a notion of a User Account in my application, and I want to allow 3rd parties to tie that user account to one or more objects in an external directory/authentication system.  Let’s say, for the sake of argument, that I’m going to use System.DirectoryServices.DirectoryEntry to represent links to external directory objects.  I…

0