Index - Hacking the Code ASP.NET Web Application Security [Electronic resources] نسخه متنی

Index

R

random-number generators, 114, 136, 151

random numbers, creating, 187–188

RangeValidator control, 220

RC2 algorithm, 156, 157, 165–166

RC2CryptoServiceProvider class, 413

reading to data files, 296–302

ReflectionPermission class, 375

registry

IIS settings to limit allowed characters, 249–250

IIS settings to limit request length, 249

removing unused drivers, 265–270

storing connection strings, 278

storing secrets in, 194

registry keys, and least privilege principle, 247–248

RegistryPermission class, 375

regular expression patterns, escaping data, 225–226

RegularExpressionValidator control, 6, 220, 221

.rem files, 62

REMOTE_ADDR variable, 215–217

remoting security, 412

repudiation, defined, 154, 310

Request object, 208–209, 214–217

requesting permissions, 363, 373–376

RequiredFieldValidator control, 220

resetting lost or forgotten passwords, 28–42, 52

resource-based user authorization, 90–91

resource starvation, 78–86

.resources files, 63

Response.Cookies collection, 124

.resx files, 63

return codes, exception handling, 241

reversible encryption, 20–21

Rijndael algorithm, 156, 157, 163–164

RNGCryptoServiceProvider class, 187, 413

role-based security, 363, 387–396

role-based user authorization, 90–91

roles, user, 87, 88, 89

RSACryptoServiceProvider class, 413

runtime errors, 317, 318