ASP.NET security patch, what's changed

Sep 28, 2010

ASP.NET security patch, what's changed

I've snooped around with fiddler to see what changes have been introduced by the patch release today for the ASP.NET framework.

I've seen to notable differences in the behaviour of webresource.axd:

The d parameter is now set to a value much longer than before, it seems it's 50 bytes longer
Tampering with this parameter will not trigger a 500 server error and an entry in the application event log. A regular 404 error is returned to the browser, and nothing is logged in the event log.

My guess is that they have included an integrity check of some kind. Also, they've fixed the problem with error messages distinguishing between the different errors occuring. Now, it's all 404 errors.

Anyhow, it's time to go home from work. Unfortunately, my local time is quite far from PDT. Happy patching!

17 comments:

chenlina21 April, 2017 04:03
columbia outlet
kobe shoes
michael kors uk
scarpe hogan
louis vuitton outlet
nike roshe run pas cher
mbt shoes
pandora jewelry
canada goose jackets
louis vuitton handbags
chenlina20170421
ReplyDelete
Replies
Richard Majece30 May, 2018 15:31
I like changes if we are talking in general. But I write my academic papers using advices from https://samedaypaper.org/blog/paper-outline and I don't want to change it.
ReplyDelete
Replies
Unknown31 October, 2018 09:48
surveillancekart security system

surveillancekart cctv installation services

cp plus

Pestveda pest control services

dezigly

The feedgasm Latest News And Breaking News

quicksodes

latest news in hindi
ReplyDelete
Replies
Anonymous05 March, 2019 21:12
https://tcswebmail.club
ReplyDelete
Replies
samaher04 April, 2019 15:23

نقل عفش من جدة الى الطائف
شركة نقل عفش من المدينة المنورة الى جدة شركة نقل عفش من جدة الى المدينة المنورة

شركة نقل عفش من الرياض الى الامارات شركات نقل عفش من الرياض الى الامارات
شركة نقل عفش من الرياض الى الاردن شركات نقل عفش من الرياض الى الاردن

________
ReplyDelete
Replies
Anonymous14 May, 2019 14:34
https://pokesniper.online/tcs-webmail/
ReplyDelete
Replies
Jagna Co Kalani17 May, 2019 09:01
Network Security Final Year Project Ideas

Project Centers in Chennai

JavaScript Training in Chennai
JavaScript Training in Chennai

ReplyDelete
Replies
RoyceRobbie21 September, 2019 09:58
Good information and, keep sharing like this.

Crm Software Development Company in Chennai
ReplyDelete
Replies
MEGAN FOX21 September, 2019 11:29
Good Information keep going.

YouTube Marketing Company in Chennai
ReplyDelete
Replies
Unknown21 September, 2019 12:08
Nice post.

Smm company in Chennai
ReplyDelete
Replies
Unknown21 September, 2019 12:14
Great Sound, you provided a valuable information.

wordpress ecommerce development company chennai
ReplyDelete
Replies
Unknown21 September, 2019 12:40
Nice information.

Seo Company in Chennai
ReplyDelete
Replies
scarlett23 September, 2019 10:56

Nice information keep sharing like this.

scaffolding dealers in chennai
Aluminium scaffolding dealers in chennai
Aluminium scaffolding hire
ReplyDelete
Replies
Allison23 September, 2019 14:20
Thanks for this valuable information sharing, and i learned a lot and cleared my all doubts in this.. keep posting like this useful information.
post free classified ads in india

ReplyDelete
Replies
Octavia25 September, 2019 14:44
Thanks for this valuable information sharing, and i learned a lot and cleared my all doubts in this.. keep posting like this useful information.
Scaffolding Dealers in Chennai
Aluminium Scaffolding Dealers in Chennai

ReplyDelete
Replies
Sheshadri27 September, 2019 12:15
Thanks for sharing this wonderful information. I hope you will share more helpful information regarding the content.
web portal development company in chennai
ReplyDelete
Replies
Octavia04 October, 2019 13:14
Thanks for sharing this wonderful information. I hope you will share more helpful information regarding the content.
scaffolding dealers in chennai
aluminium scaffolding dealers in chennai
ReplyDelete
Replies

Subscribe to: Post Comments (Atom)