ASP.Net Custom Headers

Posted by on April 22, 2010 · Comments Off on ASP.Net Custom Headers
Filed under: Development, Security 

Have you ever taken the time to look at the headers that are returned from your ASP.Net application? If you have, you may have noticed the following two headers that are added for ASP.Net: X-Powered-By: ASP.Net X-AspNet-Version: x.x.xxxx (the version of .Net used for the application) Many people ask how to remove these two headers from the ...

Security Abstraction: How much is too much?

Posted by on April 22, 2010 · Comments Off on Security Abstraction: How much is too much?
Filed under: Development, Security 

I was having a conversation the other morning with a colleague and we were discussing how much security an enterprise web application developer should be exposed to. This topic has come up in numerous conversations over the past year or so and it is still debatable. The question is how much abstraction should, ...