5 of the most common mistakes developers make when they manipulate the web.config file. 1. Custom Errors Disabled When you disable custom errors as shown below, ASP.NET provides a detailed error message to clients by default. Vulnerable configuration: <configuration> <system.web> <customErrors mode="Off"> Secure configuration: <configuration> <system.web> <customErrors mode="RemoteOnly"> ...
Monday, October 26, 2009
Wednesday, October 7, 2009
October 07, 2009
Scenario: user clicks a button in your ASP.NET page and you want to disable it immediately using javascript so that the user cannot accidentally click it again. Originally I thought this was going to be simple by using the onclientclick property of the ASP.NET button server control but although that worked to disable the button, it did not continue with the form postback. Eventually after quite a bit of Googling and some more failed...
Thursday, October 1, 2009
October 01, 2009
Seven Web Application Toolkits are available for download at the MSDN Code Gallery. These toolkits are aim to provide web developers with resources (such as project templates, controls, code samples, and documentation) in a consistent packaged format that can be consumed and put to use in a very short time so that they can evaluate the technology and determine if it's the right solution for their problem. An introduction to the toolkits is available...
October 01, 2009
THE ERROR: HTTP Error 500.19 - Internal Server Error with Error Code: 0x80070021 The requested page cannot be accessed because the related configuration data for the page is invalid. ERROR DETAILS: Module: RequestFilteringModule Notification: BeginRequest Handler: StaticFile Error Code: 0x80070021 Config Error: This configuration section cannot be used at this path. This happens when the section is locked at a parent level. Locking is either...