We probably all remember how agonizing it is to create client-side cookies using JavaScript. HttpCookie class offers an easier way to accomplish the task and with minimal fuss. This article takes a close look at HttpCookie class and how to use it to store cookies on the client machine.

Marcus Mac Innes demonstrates how security on a web site can be compromised by taking advantage of holes within the application code. These holes can be discovered by using a series of probes which disclose whether or not vulnerability exists. He also demonstrated using a Cross Site Scripting attack how the Forms Authentication cookie could be stolen and silently sent to an attacker's website to be stored for later use. The key message of the talk is to ensure that all user input is validated before any other processing is done. This together with strict use of secure coding standards would have disabled any attacker's opportunities. Source code included.

Working on a multi-developer ASP.NET project while sharing one web.config can be time consuming and troublesome. Usually, each developer may have path and other settings specific to their development machine, such as Database connection strings, paths, e-mail addresses, etc. For example, each developer on a project may be running a database locally that the application relies on during development. Therefore, the connection string would be different for each developer.

Every community site will have different requirements to fulfill. Although the existing CSK framework offers a great deal of flexibility, having the entire source code available means you can add additional functionality to a site in an elegant manner. In this chapter, we will concentrate on creating a new module for the CSK. We will see how creating a new module allows you to add entirely new features which integrate seamlessly with the rest of the framework. In this chapter, we will implement a Frequently Asked Questions (FAQ) module.

Demonstrates how to use custom validation on a form by checking to see if a string in a TextBox is not the same with a string from an array (or database), case in which it displays 'This name is already taken'.

The author writes "One of the things that keeps coming up as a benefit of switching to ASP.NET is the ability to use code-behind to separate display code from application logic. In Visual Studio.NET, this is 'automagically' done for you. So what if you don't have VS.NET? Here's how you can implement code-behind using just a plain old text editor and the tools included in the .NET Framework... no VS.NET required!" Source codes available for download.

Extend the existing globalization capabilities of .Net to create flexible and powerful multilgual web sites. First create a custom ResourceManager and then create custom localized-capable server controls to easily deploy multilingual functionality.

ASP.NET 2.0 Training : ASP.NET Security - In this tutorial you will learn about ASP.NET 2.0 Security, The Security Architecture of ASP.NET 2.0, The security infrastructure and subsystem relationships of the ASP.NET and the sequence of events that occur when a authentication is sought. When we talk of ‘security’ we are basically acknowledging that there is a possibility of ‘vulnerability’.

This article explains what are "Delegates"? And what is their role in .NET framework. The author uses VB.NET code to provide working examples of "Delegates".

Complete online chapter "Talking To HailStorm" from "Early Adopter HailStorm (.NET My Services)". Provides in depth information on what is .NET My Services, what it provides and how to make use of it.