Re: FormsAuthentication Class Question
From: [MSFT] (lukezhan_at_online.microsoft.com)
Date: 05/31/04
- Next message: Mark St Denis: "easy to understand web security info"
- Previous message: David Coe, MCP: "RE: Problem reading encrypted credentials from registry"
- In reply to: Joe Reazor: "Re: FormsAuthentication Class Question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 31 May 2004 05:24:05 GMT
Hi Joe,
I think it is a fgood idea to encrypt username field as a separate cookie.
Only cookie can be shared between asp and asp.net, not with application or
session variant.
Another idea is to upgrade all your asp files to aspx. Normally, we only
need to change the filename directly.
Luke
Microsoft Online Support
Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)
- Next message: Mark St Denis: "easy to understand web security info"
- Previous message: David Coe, MCP: "RE: Problem reading encrypted credentials from registry"
- In reply to: Joe Reazor: "Re: FormsAuthentication Class Question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
