Re: web.config - encrypting details ASP .NET 1.1
- From: Dominick Baier <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 1 Dec 2006 18:47:25 +0000 (UTC)
Isolated storage may not behave as expected in ASP.NET
Since IIS6 does not load a user profile - all isolated storages will end up in the AllUsers profile which again means you don't get a clean ACL separation. Why not simply store the entropy in the registry (or even a file) and ACL it using the individual worker process accounts.
If application separation is an issue for you - you should run all apps in partial trust - this is the only effective way to separate applications on a server
.
- Prev by Date: Re: Integrated Authentication with SSL
- Next by Date: Re: ASP.NET 2.0's Membership, Roles, and Profile for different client
- Previous by thread: Re: web.config - encrypting details ASP .NET 1.1
- Next by thread: Integrated Authentication with SSL
- Index(es):
