Browse by Tags

Tagged Content List
  • Blog Post: Checking for ViewStateUserKey using FxCop

    ASP.NET has had a mitigation to prevent against CSRF/One-Click attacks since 1.1 with the use of Page.ViewStateUserKey property. I've implemented a basic FXCop rule to verify if this property is used on each page. The rule is basic so it doesn't look at what is assigned to the property and only looks...
Page 1 of 1 (1 items)