Thats it really.. I am using VS2008 Express. All the samples say just to set the PasswordChar, but nothing gets masked. I also tried setting the "UseSystemPasswordChar" = true.. no luck.. // Set to no text. textBox1.Text = ""; // The password character is an asterisk. textBox1.PasswordChar = '*'; // The control will al...
How can I do this in XAML: PSEUDO-CODE: <TextBox Text="{Binding Password}" Type="Password"/> so that the user sees stars or dots when he is typing in the password. I've tried various examples which suggest PasswordChar and PasswordBox but can't get these to work. e.g. I can do this as shown here: <PasswordBox Grid.Column="1" Grid....
I'm working on a web applications where - believe it or not- the users aren't required to provide their email address to sign up. These requirements can not change. The users will login to the system with an id and password just like any standard web site. The problem I'm facing has to do with user's that have forgotten their password...
Is it better (more convenient or secure) to provide users with a lost username or password via direct message on Twitter rather than via email? ...
Reading what is currently the top answer to a recent question on how/whether to send users their passwords, I was intrigued that the most popular answer said the following... storing passwords in such a way that they are retrievable is insecure using a reset feature with the help of a secret question is a valid alternative (These two...
I need to create a some SAML 2.0 assertions, and I'm having trouble finding what the XML should really look like. Most of the documentation seems to be about using particular tools, not about the messages. I've got the schemas, with a plethora of possibilities, but I can't find an example of what the relevant messages actually look like...
I recently used Meebo and I must admit I'm a little paranoid about typing my IM login information into a site like this. How do they store my username and password for each of the separate IM services? I only feel comfortable when a site takes my password and does some type of irreversible, one-way function on it, but it seems that Meebo...
Hi I am programming a new site in JSF. At the moment i program the Login. I used md5 some years ago, but with Rainbow Tables i think its noch safe anymore. So, how should i store the Password in the Database ? ...
Hello, I am working on a Silverlight v3 web app and I would like to secure access to the WCF service I am using to fetch my data. I currently have the WCF working just fine, but it doesn't require any user credentials. I'm not very experienced with this aspect of WCF, so my first idea was to add username and password parameters to eac...
Hi, I'm facing a problem here, with HttpListener. When a request of the form http://user:[email protected]/ is made, how can I get the user and password ? HttpWebRequest has a Credentials property, but HttpListenerRequest doesn't have it, and I didn't find the username in any property of it. Thanks for the help. ...
Open source javascript algorithm to feedback user on the quality of the password he is choosing. ...
Hi, Say I have a regex that checks for alphanumeric. I now want to create another regex that checks for at least 1 number in the password. And I want to check if it has at least 1 non-alphanumeric character (somethign other than a letter or number). Should I just call each one seperatley, and if one fails return false or is there a wa...
How do I go about implementing a secure password reset function without sending the user an e-mail? There is another secure bit of information that I store and only the user should know, but it seems insecure to just let the user update a password just because they know a 9 digit number. Note that user data is stored in a simple SQL tab...
The db password expired and it needs to be updated, how do I update the password for a Cognos Data Source? ...
Hi I know that this feature is to enhance user experience (by not retyping their details every time) and users can tweak their browser settings, but is it possible to send some "headers" etc (or any method, I mean server side controlling) so that when users try to log into my site they dont get this "Do you want IE/Firefox to remember y...
I am creating a custom CMS and have built a login system and was wandering how vulnerable hashing the passwords this way would be compared to just using the md5 php function like this: <?php $token = md5($salt . $password . $pepper); ?> Most people just add a salt but adding pepper just makes sense if your going to add salt :) Here i...
Hi, I am going to generate a random password for my users. Probably I will use salt and sha1 method. But I found that there are other version of sha1, like sha256, sha512 etc. What is the differences between the sha versions? Which one better, more secure, and faster (performances)? Which one should I use?? EDIT: I am php user, thank...
I am looking for some guidance on implementing a password recovery service in ASP.NET that emails a link to the user which sends them to a password reset page as I don't want to email existing or regenerated passwords in cleartext. I have seen some suggestions of using the member id as a querystring parameter however I feel this maybe op...
My project for this summer is to make a multiplayer online flash game. I could use some advice as I've never implemented a secure login system before, let alone done so in Actionscript. My setup right now is a .swf sending/receiving game data to/from a Java server which communicates with a MySQL database about account info. 1) How ...
Currently my database user and its password are pretty easily to guess, eg. database user: dbadmin database pwd : super + companyname What and how to generate a secure a secure database password? Using md5 or sha1?? What are the things that I need to pay attention to secure my database? I am using php, thanks ...