Home
Get Started
Learn
Downloads
AJAX
MVC
Community
Wiki
Forums
Sign in
|
Join
Home
›
ASP.NET Forums
›
Search
Search
You searched for the word(s): userid:878873
More Search Options
RSS Available
Matching Posts
Re: Anonymous access and LOGON_USER
Thanks for the link, but I already read up on this before I posted here -- looks like it's just buggy behavior resulting from an unusual or unexpected combination of settings. I'm using Forms authentication with anonymous access enabled, and per this article should never be getting LOGON_USER with anything other than blank. However, I do get LOGON_USER sometimes. This is an intranet app that requires authentication for some features but not others, and so disabling anonymous access was not
Posted to
Security
(Forum)
by
nothingisnecessary
on 7/13/2009
Re: Avoid SQL Injection attacks
A purely academic question to SQL Server gurus: Is there a way (a database setting or data provider option) to disable or disallow multiple statements being executed by Mssql? Please do me a favor and spare me any answers of "use stored procedures," "sanitize your input," "run as an unprivileged user," etc. (Y'all have already made several good points in this thread, and I'm aware of the best practices, but like I said, this is just a purely academic question
Posted to
FAQ - Frequently Asked Questions
(Forum)
by
nothingisnecessary
on 7/2/2009
Anonymous access and LOGON_USER
Posts across the web, and even the official MS Docs are pretty clear on the fact that when IIS has anonymous access enabled, the LOGON_USER variable is NEVER populated. However, sometimes... it is. Why? When Anonymous Access is disabled, the LOGON_USER is always sent, but with Anonymous Access enabled, it usually doesn't send, even though it sends it some times (about 15% of the time in my experiments). I've seen this behavior consistently between different configurations of IIS 5 and 6,
Posted to
Security
(Forum)
by
nothingisnecessary
on 7/2/2009
Page 1 of 1 (3 items)
TechNet Edge:
Forefront Secure Endpoint Demo and Interview
ASP.NET:
Resizing images from the server using WPF/WIC instead of GDI+
Silverlight:
Deploying your Silverlight and WCF RIA Services application
Channel 9:
Juan Chen and Nikhil Swamy: FINE, a Compiler for End-to-End Security Verification
Channel 10:
Get the Outlook Hotmail Connector Beta
Channel 10:
MSN to Launch New Lifestyle Site from Wonderwall Creator
Channel 10:
Behind the Windows 7 Startup Animation
Channel 9:
Reactive Extensions API in depth: CombineLatest
Channel 9:
C9 Lectures: Dr. Graham Hutton - Functional Programming Fundamentals Chapter 11 of 13
WindowsClient:
New WPF Showcase: Scrum Sprint Monitor
WindowsClient:
WPF/XAML helping VS2010 Extensibility
WindowsClient:
HTTP 403.9 with ADO.NET Data Services
WindowsClient:
xml syntax highlighting in Silverlight
Channel 9:
Channel 9 Emerges in China
WindowsClient:
Overlaying Icons on the Windows 7 Taskbar with WPF 4
Channel 9:
The Outlook calendar starts in 1601 - But Why?
ASP.NET:
Bytes by MSDN: Brad Abrams Interview with Billy Hollis: Silverlight 4, RIA Services and VS2010
Mix Online:
Pictures or it Didn't Happen
Channel 9:
Reactive Extensions API in depth: even more Zip
TechNet Edge:
SDL For Agile
Microsoft Communities
ASP.NET
Channel 8
Channel 9
Channel 10
IIS.NET
Silverlight
TechNet Edge
WindowsClient
Mix Online