Software Blog

Let's Talk Software

File Sharing - Our own solution

I am always sending files to people for both personal use and my small business. My concern however is that my files are not securely transferred when I send them via normal email. (If you’re not worried about this, maybe you should be - just think of someone looking at the files you send to others.  Do you really want just anyone to see them?) So, I thought I would give a shout out to one of my favorite products our company has built - BURNER.LINK.

While I can always login to my online account, the desktop app to make a BURNER.LINK is so fast and simple!  And who has time for slow file transfer these days.

 

read more
RSS

Visual Studio 2015 - IIS Express 10.0 Firefox/Chrome Issue

Started using Visual Studio 2015 on Windows 10 this weekend, did a clean install. Started bringing in some of our current projects and could not get them to run with a local cert (ssl) on the new IIS Express 10.0. Only seemed to be an issue with Firefox and Chrome, not Microsoft Edge.

** Update 10/8/2015 Chrome **

 

read more
RSS

ASP.NET Identity w/o Entity Framework

If you prefer to use Entity Framework, more power to you. After developing my SQL skills for years it just feels "odd" to give them up for what I consider minor convenience. I'm sure that this is some sort of holy war discussion that really, I'm not interested in participating in. Given that, there are some of us out here in the wild that don't want to use ORM's like Entity Framework (or any other for that matter, except of course Dapper).   So when I found out that the new security model for ASP.NET called "ASP.NET Identity" had a dependency on EF, I needed a way to remove it.

read more
RSS

OWASP ZAP - Passive Scanning - Get Started

OWASP ZAP is an excellent (FREE) tool to test your website for common security issues. It has a large library of plugins and an what seems to be an active community. Although the tool has an active attack method, I prefer the passive attack method as you can use the site as you normally would. Although tutorials do exist on how to get started, I personally had difficulty finding them or knowing what I was even looking for when I first started. Especially related to passive security scanning. The interface isn't the most "intuitive", so I figured I would write these instructions for anybody encountering the same problems.

read more
RSS

ASP.NET Identity 2.0 Security Stamp

I'm currently working through a complete Identity setup without using Entity framework. This is taking me to difficult places as the source for this library is yet to be released. It involves lots of reading and guessing. One area of confusion is the Security Stamp.

You can read about the description over at stack overflow http://stackoverflow.com/questions/19487322/what-is-asp-net-identitys-iusersecuritystampstoretuser-interface.

This is the best I found, but it still wasn't enough for the full blown, non EF version.

read more
RSS
<123>