Securing WCF Duplex Connections

Similar Messages

• Just had cellular data plan added to my iPad 2. How do I wep secure my wifi connection?

  How can I secure my cellular data wifi network on my iPad 2? I want to ensure others are not drawing against my data plan.

  You can set up a password to secure your WiFi connection from your router. A very smart thing to do given a recent news story about a guy in Florida who didn't secure his WiFi network and was raided by the polce, who later discovered his signal was being used by another dude for illegal purposes..
  As to your 3G cellular data plan, I don't believe it turns your iPad into a WiFi hotspot that others can use. 
  I can be paranoid, so I tend to turn on airplane mode when I'm not using my iPad, and especially overnight when I'm asleep.

• How to secure my internet connection?

  I have a linkseys wireless router which I use for my macbook and my two other imacs at home. The internet is really fast with the imacs, but so much slower with my macbook. Even when the two imacs are off and im only using the internet on my macbook, it is still considerably slower most of the time! Is it because I didnt secure my internet connection and other people might be using it? And it always shows a strong signal so I have no idea why the internet is so much slower on my macbook than on my imacs.

  It doesn't make sense that your iMac's are working fast but your MacBook is not with respect to people stealing (or rather using) your Internet connection. I'm thinking there's a configuration problem with your MacBook.
  I'd first like to say, do you realize you are responsible for what happens through your Internet connection?
  Now let's get you secure.
  Linksys makes some good stuff, but first let me understand more about your network. I'm assuming all three of your Mac's are wireless. If so then you'll have to secure all of them.
  Depending on the age of your Linksys you could have a few options for securing it. I'll go in order of most secure to least secure.
  1. WPA2 Personal encryption. If you can set this on your router, great. If not continue on...
  2. WEP encryption. Better than nothing
  3. No encryption but turn off SSID broadcasting. this makes your network hidden from casual users. Note: not from hackers!
  Okay, you'll need to connect to your router. Usually 192.168.1.1 for Linksys. The login account will be admin with no password (or use password for the password). Sorry it's been awhile since I hacked into, er rather used a Linksys router.
  Just open your web browser and type in the routers IP address (if you look at your network TCP/IP settings, the routers IP will be listed under, well... router.
  Okay once you are connected to the router it should have a web based configuration. This is where you'll turn on encryption and turn off the SSID broadcast.
  It would be best if you post back and let us know you've made it this far and to clarify any questions you have.
  Greg

• Problems with "Secure Thin JDBC Connection Sample"

  I've tried to run the example code, "Secure Thin JDBC Connection
  Sample", but I get "java.sql.SQLException: Oracle Error: ORA-
  12645" when connecting to my server. Does anyone know what is
  wrong? Without the security properties in the client it works,
  so it it something with the security.

  Hi Peter,
  the page you post has a link to jar file at http://www.oracle.com/technology/sample_code/deploy/security/files/secure_thin_driver/secure_thin_driver.jar
  this jar has many example source codes. Just unzip it... or unjar it typing jar xvf SecureThinDriver.jar

• Need to suppress Windows Security dialog when connecting to CRM WCF service from application

  I am currently developing a Windows desktop application that uses the CRM WCF service as a data source. The CRM environment uses AD authentication. The problem I have is that our domain enforces a password expiration policy, so every three months each user's
  CRM password changes, and the one stored for the user (in encrypted form) in the application becomes invalid.
  When that happens, after logging into the application, the user is presented with a Windows Security dialog asking them to enter their network user credentials. If they do so the first time, they're asked up to a dozen more times, to authenticate a bunch
  of OrgServiceProxy objects in a pool. This is confusing, frustrating, and dangerous from a security mindset (don't want the user getting too comfortable entering network credentials into every dialog that asks). I want to suppress this popup, and instead have
  the CRM authentication immediately throw the SecurityNegotiationException I'm expecting if the credentials passed are wrong. The app will catch that and direct the user to the User Maintenance screen where they can update their credentials.
  I know it's possible to put the site in a zone with custom security settings suppressing this prompt, but Group Policy to do that is kind of heavy-handed and could have unintended consequences. I would prefer a programmatic "quick fix" for now,
  until we can re-architect the application's security layer to do all authentication against AD.
  Thanks.

  Hi friend,
  This forum is to discuss problems of C# development. Your question is not related to the topic of this forum.
  You'll need to post it in the dedicated ASP.Net Forum
  http://forums.asp.net for more efficient responses, where you
  can contact ASP.NET experts. Thanks for understanding.
  Have  a nice day!
  Kristin

• WCF service connection forcibly closed by the remote host for large data

  Hello ,
                      WCF service is used to generate excel report , When the stored procedure returns large data around 30,000 records. Service fails
  to return the data . Below is the mentioned erorr log :
  System.ServiceModel.CommunicationException: An error occurred while receiving the HTTP
  response to <service url> This could be due to the service
   endpoint binding not using the HTTP protocol. This could also be due to an HTTP request context being aborted by
  the server (possibly due to the service shutting down). See server logs for more details. ---> System.Net.WebException:
  The underlying connection was closed: An unexpected error occurred on a receive. ---> System.IO.IOException:
  Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host.
  ---> System.Net.Sockets.SocketException: An existing connection was forcibly closed by the remote host
     at System.Net.Sockets.Socket.Receive(Byte[] buffer, Int32 offset, Int32 size, SocketFlags socketFlags)
     at System.Net.Sockets.NetworkStream.Read(Byte[] buffer, Int32 offset, Int32 size)
     --- End of inner exception stack trace ---
     at System.Net.Sockets.NetworkStream.Read(Byte[] buffer, Int32 offset, Int32 size)
     at System.Net.PooledStream.Read(Byte[] buffer, Int32 offset, Int32 size)
     at System.Net.Connection.SyncRead(HttpWebRequest request, Boolean userRetrievedStream, Boolean probeRead)
     --- End of inner exception stack trace ---
     at System.Net.HttpWebRequest.GetResponse()
     at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout).
     --- End of inner exception stack trace ---
  Server stack trace:
     at System.ServiceModel.Channels.HttpChannelUtilities.ProcessGetResponseWebException(WebException webException, HttpWebRequest request, HttpAbortReason abortReason)
     at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)
     at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)
     at System.ServiceModel.Dispatcher.RequestChannelBinder.Request(Message message, TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
     at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
  Exception rethrown at [0]:
     at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
     at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
     at IDataSetService.GetMastersData(Int32 tableID, String userID, String action, Int32 maxRecordLimit, Auditor& audit, DataSet& resultSet, Object[] FieldValues)
     at SPARC.UI.Web.Entities.Reports.Framework.Presenters.MasterPresenter.GetDataSet(Int32 masterID, Object[] procParams, Auditor& audit, Int32 maxRecordLimit).
  WEB CONFIG SETTINGS OF SERVICE
  <httpRuntime maxRequestLength="2147483647" executionTimeout="360"/>
  <binding name="BasicHttpBinding_Common"  closeTimeout="10:00:00"  openTimeout="10:00:00"
         receiveTimeout="10:00:00"  sendTimeout="10:00:00"  allowCookies="false"
         bypassProxyOnLocal="false"  hostNameComparisonMode="StrongWildcard"
         maxBufferSize="2147483647"  maxBufferPoolSize="0"  maxReceivedMessageSize="2147483647"
         messageEncoding="Text"  textEncoding="utf-8"   transferMode="Buffered"
         useDefaultWebProxy="true">
  <readerQuotas     maxDepth="2147483647"
        maxStringContentLength="2147483647"  maxArrayLength="2147483647"
        maxBytesPerRead="2147483647"  maxNameTableCharCount="2147483647" />
       <security mode="None"> 
  WEB CONFIG SETTINGS OF CLIENT
  <httpRuntime maxRequestLength="2147483647" requestValidationMode="2.0"/>
  <binding name="BasicHttpBinding_Common"
         closeTimeout="10:00:00"       openTimeout="10:00:00"
         receiveTimeout="10:00:00"       sendTimeout="10:00:00"
          allowCookies="false"        bypassProxyOnLocal="false"
          hostNameComparisonMode="StrongWildcard"        maxBufferSize="2147483647"
          maxBufferPoolSize="2147483647"        maxReceivedMessageSize="2147483647"
          messageEncoding="Text"        textEncoding="utf-8"
          transferMode="Buffered"        useDefaultWebProxy="true">
   <readerQuotas
         maxDepth="2147483647"
         maxStringContentLength="2147483647"
         maxArrayLength="2147483647"
         maxBytesPerRead="2147483647"
         maxNameTableCharCount="2147483647" />   

  Doing binding configuration on a WCF service to override the default settings is not done the sameway it would be done on the client-side config file.
  A custom bindng must be used on the WCF service-side config to override the defualt binding settings on the WCF service-side.
  http://robbincremers.me/2012/01/01/wcf-custom-binding-by-configuration-and-by-binding-standardbindingelement-and-standardbindingcollectionelement/
  Thee readerQuotas and everything else must be given in the Custom Bindings to override any default setttings on the WCF service side.
  Also, you are posting to the wrong forum.
  http://social.msdn.microsoft.com/Forums/vstudio/en-us/home?forum=wcf

• Need help on how to secure my wireless connection.....

  im new to the wireless thing and im trying to figure all this stuff out. i bought the wireless g 2.4 broadband router  because i have a wireless notebook and everthing has been going fine until recently. i have excellent connection but my speed keeps going up and down but it use to stay on 54 Mbps or 48 Mbps (my notebook connection) can tell me whats wrong on that part? Another issue is how do i manually go about securing my connection because i feel like anybody can use my connection  and that my desktop computer that houses the connection is vulnerable. All these problems started ever since a suspicious vehicle was stopping around my house. please help

  Hi…First of all hardwire your computer with your router and then Login in router setup page through your internet explorer by typing in 192.168.1.1 in Internet Explorer > address bar > skip username and enter ‘admin’ as password > click ok. You will get router setup page in front of you, click Wireless Tab > click 2nd Sub Tab under Wireless as ‘Wireless Security’, enable wireless security, select WEP and security mode, wireless encryption level as 64 Bit 10 hex digits, and type in 10 digit number without any spaces, symbols and alphabets in WEP Key 1 box. And that’s your wireless network key or password. Do not change any other settings on that page and click save settings and then exit the page. As a result your wireless network is secured. Use that 10 digit number when your wireless computer will demand it while connecting to your wireless network.

• Bit of a strange question regarding security and internet connection

  This is a bit of an odd question so bear with me for a moment.
  I sold my old G4 to someone I didn't know yesterday. While he was looking at it to make sure it was working I allowed him to plug my ethernet cable in (connected to both a netgear router and a cable modem) and go online to install an application on the computer he was buying. It did't take long and I didn't actually see what he installed but after he left and I plugged back in to my mac pro, my internet connection started suffering. It started by being very slow and then timing out with servers. I reset the modem and even bypassed the router but the connection did not improve and eventually I could only get a self assigned IP address with no internet, although the modem appeared to be fine.
  Aside from finding my I.P. address at my location, is there anything else he could have compomised security wise, either in the name of harvesting some kind of info or just creating a problem in the cable network when I let him use my connection on the g4?
  I think that most likely I'm being a little paranoid but the timing of this is a bit strange. It literally went down hill just after he left.
  Today the cable company is reporting a wider internet outage than just me but I just though I'd throw it out there to see if there are any security wholes exploitable when someone uses your internet connection (I would think and hope that there are not).
  thanks a bunch

  Well, in the closing the stable door approach it is a good idea to do a complete erase and install when selling any computer. There's lots of references to this and even one about removing a certain file so when they start up they get the brand new Mac greeting window. If you do not erase the drive using the secure erase feature in Disk Utility then with an $80 investment plus an empty spare drive the purchaser can likely recover any files you had on the computer recently if they consider it worth the effort.
  I suspect the internet issue is not related to this, especially since your ISP commented about problems.

• I can't seem to connect to my lion vpn, all web services I set up work well like wikis and what not. I get a security error 792 Connection attempt failed because security negotiation times out. Please help

    I get error 792 Connection attempt failed because security negotiation time out. I am trying to connect a xp machine to my vpn.

    I get error 792 Connection attempt failed because security negotiation time out. I am trying to connect a xp machine to my vpn.

• On my iPad 2, how can I verify a secure (SSL, TLS) connection?

  After performing a search with the Google Search app and clicking on one of the "result" hyperlinks, I've just made an online purchase from my iPad 2.  Soon as I committed to the transaction, I began to look around for some indication that the Google Search browser had actually established an encrypted connection.  I became very nervous when I was unable to find something like the "padlock" icon, or even the "https" scheme in the first part of the URL — I guess Google thought such feedback to us users is superfluous or unnecessary information, but that supposition could really get me into trouble if it's not, in fact, true.  So, then, how is one to know whether it's safe to conduct sensitive business that includes the sharing of personally identifying information, credit card numbers, etc., with an iPad 2?
  NOTE:  To be clear, this question assumes that I am working  from my own, secure network, not from a public hotspot such as a coffee shop, library, hotel, etc.]

  Hi, JimHdk!
  In the case of doing a Google search from within the Safari app you're correct that the entire URL will display (including the https) and the padlock will display to the left of the page name.  However, when doing a Google search using the Google Search app, my iPad's default browser (Safari) is not opened.  Instead, the Google Search app runs its own browser that neither displays a padlock icon when it's on a secure connection nor does it display the entire URL — i.e. it "hides" the first scheme (http://) of every URL, displaying only the latter part "www.enterprise.com."
  Bill

• I have a canon MX7600 multifunction printer. My security setting allow connection with the printer. If I disable the firewall it works fine. If the firewall is running I get a dialog box every time I print asking for permission. How do I fix this?

  I have a canon MX 7600 multifunction printer. Each  time I print I get a dialog box asking for permission to allow connections to the printer. This box stays on my screen for a few seconds, if I don't click allow I get a communication error which then requires me to delete the job and start over. I contacted Canon and proceeded with their suggestions to no avail. They now say it is an Apple issue. My security settings are set to allow connection to the canon printer. If I disable the firewall it works fine, once I enable the firewall the problem returns.  This issue is a royal pain. Any suggestions on how to fix it short of buying a new printer?

      jsavage9621,
  It pains me to hear about your experience with the Home Phone Connect.  This device usually works seamlessly and is a great alternative to a landline phone.  It sounds like we've done our fair share of work on your account here.  I'm going to go ahead and send you a Private Message so that we can access your account and review any open tickets for you.  I look forward to speaking with you.
  TrevorC_VZW
  Follow us on Twitter @VZWSupport

• Applet security problems while connecting with database

  i hav problem in the japplet connecting with sql database
  it gives security access denied error while running program as my driver is jdbc:odbc:bridge driver
  so for resolving this error how can i turn off security of applet and also which security permission to be change?
  plz reply

  baftos wrote:
  Maybe I should question the need to access a local database on the client PC.
  But anyway, the normal way to obtain security clearance is to use a signed applet.
  Another possibility is to grant the applet all permissions by modifying the security policy file of each client to grant your applet 'all permissions'. Note that in this case you must have access to each and every client PC or ask them to do so before running the applet.Database access at client's machine is ridiculous. I doubt this is what OP wants.
  @OP: request you to post the original security issue and the environment details.
  Thanks,
  Mrityunjoy

• Security issue with connecting to Microsoft Live

  I currently use StudioCloud for my studio management software. However, I'm unable to use the email features of the software as they state "**Adobe Air has a security issue connecting to Windows Live and, as such, StudioCloud can not work with Windows Live/Hotmail at this time.**" (http://app1.studiocloud.com/support/index.php?/article/AA-00265/0).
  Are there any plans on resolving this issue?
  As a small business owner, I need to streamline my processes.  If there is a possibilty of this being fixed in the near future, then I won't look at other options, but if it isn't, then I need to determine if I will be moving my email to another host, or using a different studio managment software, or finding a different method of handing my email communications with my clients which is efficient and meets my needs. 
  Thank you.
  Catherine Bowser

  Reported via a live chat.  I must say that the guy was very helpful and said he'd reported the issue together with the tracert data I had provided.
  Afraid I lose the will when trying to speak to BT by phone!

• Secured WCF Service Visual Studio Template

  I'm looking for a WCF template that has WSSecurity features already added to it. Does such a template exist?
  Thanks!

  Hi Andrew Greenwright,
  It will be better if you can tell us what Visual Studio version that you are using and which WSSecurity features that you want to implement. For example we can use the WCF Security Token Service and Claims-Aware WCF Service template in Visual Studio 2010:
  In Visual Studio 2012, we can download the
  Identity and Access Tool to enable
  Windows Identity Foundation (WIF) on WCF Services for security.
  In Visual Studio 2013, the
  Windows Identity Foundation (WIF) has been fully integrated into the .NET Framework 4.5.
  Best Regards,
  Amy Peng
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Printing a secured document duplex

  When printing a secured document from Adobe Reader 10.1.3 on Mac OSX Lion to a Canon iP3000, the printer dialog is disabled. How can I ask for duplex printing?

  Michael,
  Thanks for responding. After selecting File->Print a dialog titled "Print Secured Document" appears. Options are Pages -> All | Current | Selection, Number of copies. Buttons are Cancel and Print. Selecting Print sends the document to the default printer. There is no display of the printer setup dialog.
  The document I want to print is a copyrighted document that is DRM secured and can only be opened by Adobe Reader with the File Open Plugin and according to the vendor's site, will only allow 1 print to be made and can only be opened on the computer it was first opened on.
  Thanks