security

问题 I'm trying to browse SSAS cube using different user and I get "the user name or password is incorrect". I gave the user Admin rights on the cube, admin rights on the SSAS server and these were not helped. the only users who can browse the cube are domain admins. By the way, browsing the cube directly without changing the user works well. What is the problem? what should I change? 回答1: You are logged into a laptop or server as DOMAIN\user1 then you try to switch to DOMAIN\user2. Make sure

问题 I have never developed an application outside my companies system where we just rely on windows authentication from our domain, but I want to learn how to develop a secure application that I can connect to a remote database. I know it is easier if I use ASP .Net because the data connections will be on server side, but I want to have a WPF application as well for administrative tasks. Here is what i can think of for securely connecting to a database: First have a SSL connection to the database

问题 I have never developed an application outside my companies system where we just rely on windows authentication from our domain, but I want to learn how to develop a secure application that I can connect to a remote database. I know it is easier if I use ASP .Net because the data connections will be on server side, but I want to have a WPF application as well for administrative tasks. Here is what i can think of for securely connecting to a database: First have a SSL connection to the database

问题 I am hosting a netTcpBinding WCF server in a Windows service. I am able to successfully connect to its remote calls via my own client without issue, so I know that it works well. However, I generate the exception Request for the permission of type 'System.Security.Permissions.EnvironmentPermission when I attempt to connect to the same service via a .NET plugin fom a third party solution. My client plugin loaded from the third party application is doing the following: EndpointAddress

问题 Right now I have a form template that has some fields that are prefilled from a database using the iTextSharp library. Users will then fill in the rest of the fields and save the filled out forms. I'll then extract the data and put it in the database. Currently I am able to create the PDFs and they are pre-filling just fine. I'm even able to edit and save them in Adobe Reader on my computer. However I'm finding when anyone else opens those same files, they're not allowed to save the forms.

问题 In current project using MySQL. Looking into the mysqli functions, found them to be very difficult to use. In my opinion, any programmer using the library should have a Medal of Honor. Three problems: mysqli does not handle NULL or functions such as CURRENT_DATE it is impossible to use paramterized SQL statements for queries with random WHERE clauses (so how do you prevent SQL Injection attacks?) in my opinion, it's too much work to use sqli in complicated cases (see link) PDO does not solve

问题 I'm trying to build an iPad app to download and display documents (pdf, ppt, doc, etc.) from a web server. Currently it does this by parsing the HTML structure (using hpple ) on the server. For example, the files are held at: Http://myserver.com/myFolders/myFiles/ The app goes to this location and traverses the tree, using an X-Path query, e.g. "/html/body/ul/li/a" It then downloads whatever documents it finds to the iPad for display. So far this works quite well but the server is publicly

问题 I started today with Firebase and try to create a sample iOS app. At the moment I'm stuck with securing my data. Lets say I have this demo data. { "Demodata" : { "demodata-1" : { "id" : 1, "uid" : 1234 } } } and this rule file { "rules": { "Demodata" : { "$uid" : { ".read" : "auth.uid == $uid" } } } } and a logged in user with the uid : 1234 I log in with this code. ref.authUser(email, password: password, withCompletionBlock: { error, authData in completion(result: error) }) Then I try to get

问题 Recently our Web hosting provider moved to a medium trust level for all shared ASP.NET site hosting. As a result, we're having some issues completing transactions via PayPal's SOAP API. Specifically, a SecurityException exception is being thrown with the following stack trace: [SecurityException: Request for the permission of type 'System.Security.Permissions.SecurityPermission, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.] System.Security

问题 In my case, I have a React app (using Next ) that need to use an API provided by a node / express / mysql app. My idea was to have an endpoint ( /login ) to provide a JWT Token based on user / password (that check the user in the database and create token based on the id of the user) and then use the JWT token to use the API endpoints (those token are stored in the mysql as well). But in order to do that, and because there is no form, I would have to store the credentials ( user and password