Archives for Web Applications - Page 2
What’s NEW in MVC 6.0?
These are some of the bigger changes in MVC 6 Dependency injection built in Cloud optimized versions of MVC, Web API, Web Pages, SignalR, and EF MVC, Web API and…
Group Policy Preferences Security Hazards
Domain machines periodically reach out and authenticate to the Domain Controller utilizing the Domain credentials of the logged-in user (these can be, and often are, unprivileged accounts) and pull down…
Security certifications
CISSP or CCIE SECURITY? CISSP is an internationally recognized and accredited certification for IT security training, CCIE is a CISCO specific training – and though, several employers require CCIE, most…
Cookies Accessible through Client-Side Script
In 2002, Microsoft introduced a new cookie property called "HttpOnly." While you can set the property programmatically on a per-cookie basis, you also can set it globally in the site…
kerberos versus SAML
Kerberos is primarily used over internal LANs to authenticate users. The question is – why isn’t it used as an external (public facing) auth mechanism? The REALM The answer –…
multiple sites, single IP
In brief, if you want to host multiple sites (on IIS) – and all you have is a single IP , you have to use host-headers (in IIS). These host…
Server Farm versus SErver cluster
In general, a cluster refers to a two machine setup where one is active and other is passive (or active/active in a true cluster environment). The actual processing is handled…
DoES your app need a certificate SerVER?
Typically, no! There are some use cases where it may be justified : VPN Authentication Use Case A certificate can also be the second factor for VPN access. In…
Auto scale image to fill entire web page
If you have a page size that may not be fixed – but would still like your image (background image) to automatically fill in the entire page, here is a…
Blocking traffic from overseas countries
Blocking other countries' IP addresses to prevent hacking attacks from overseas has a few downsides: a) You will block a lot of legitimate traffic - Armed forces overseas, IPs that…