Do we really need CAPTCHA's to prevent robots posting to our web forms? Not if you run ASP.NET 2.0. Whether you use a form for member logins, blog comments or a web shop you want to keep it as secure and tamper proof as possible. Brute force attacks on a login form performed by robots or ... [More]

Shows how to remove the X-AspNet-Version HTTP header by changing only the web.config [More]

The mothod removes the yellow screen of death and let’s the browser decide what to display to the visitor. [More]

Some of my friends have been considering moving to Vista and have therefore asked me if it’s worth the money. My answer is an unconditionally yes, but then they ask why that is and what features are worth the upgrade? That’s an easy question to answer because there is only one big f... [More]

On a website with the ability for users to logon, it is a good idea to have some sort of password policy. The most widely used contains minimum requirements for the length of the password and that the individual characters must be a mixture of numbers, letters and special characters... [More]

We probably all know about the annoying captcha images that a lot of blogs uses for separating humans from machines (spam robots). I use a captcha image to avoid comment spam on this blog because I get a lot, but I really don’t like to use it. I don’t like the fact that it makes is ... [More]

Every time an email address is written on a website, it allows spam robots to collect it and abuse it. If you have a website (e.g. blog or forum) that displays the users e-mail address it would be a nice service to mask it for the spam robots. The safest way to display an e-mai... [More]

The built in webserver in Visual Studio 2005, formerly known as Casini, uses a dynamic or static port on the localhost machine (e.g. http://localhost:2049/default.aspx). It is dynamic by default, but you can make it static if you choose. That works very well except when you try it i... [More]

When building a new application, be it Windows Form or ASP.NET, security is an important factor to consider from the very beginning. There are hundreds of books and thousands of websites helping you to secure your application, but they all seem to share one annoying thing; they make... [More]

It’s always a good idea to have a password policy when creating new applications. A password policy can vary from project to project, but the important part is just to have one to begin with. It is very difficult to implement later in the process and then change all the users’ passw... [More]