:::: MENU ::::
Browsing posts in: Tips and Tricks

A potentially dangerous Request.Form value was detected from the client

Have you ever experience the following error in ASP .NET?

A potentially dangerous Request.Form value was detected from the client 

Then you are one like me. Then you should now that one of the values of your elements (<inputs> or <button> or <textarea>) has html elements on it. Example is bellow:

<input type=’text’ name=’content’ value='<script language=”javascript”>alert(“Hello World!”);</script>’/>

Then you should also know that this error is persisting because the values given above might be an XSS attack. If you are sure that you want to accept this type of values on your dabatase you may explicitly remove this validation by adding this tag to your page’s masterpage or 1st line of tag.

validateRequest=”false”

If you are on ASP .NET MVC you can add this to your model, assuming that your model has the content variable.

[AllowHtml]
public string content = String.Empty;

Thanks hope it help you allot. Also if you are not familiar with XSS attacks, I will try to make an article for that so you can create your own script that is hack-able, be able to prevent it, and know what are it’s crons.

God Bless!


jStorage:An alternative for Cookies

Have you ever wondered if there is an alternative for Cookies? 

You should, because there are limitation and downsides in using Cookies on your website that massively use this feature.

  1. Cookies has limited size on most browsers
  2. Cookies is transfer to server every page load
  3. If you overload the size of the Cookies it will also eat up the space of session and might remove it

Introducing jStorage, a jQuery way of saving your data to the local client and I quote

jStorage is a cross-browser key-value store database to store data locally in the browser – jStorage supports all major browsers, both in desktop (yes – even Internet Explorer 6) and in mobile.

Yes it even support IE 6!

So how to use it in an easy way?

  1. Include the following references to your project
    1. <script src="https://cdnjs.cloudflare.com/ajax/libs/jquery/1.8.0/jquery.min.js"></script>
      <script src="https://raw.github.com/andris9/jStorage/master/jstorage.js"></script>
  2. Use $.jStorage.set(key, value) to save a value 
  3. Use $.jStorage.get(key, “default value”) to get a value

And thats it you are now using jStorage. 

Reference : http://www.jstorage.info/


WCF in Different Domain or Server

Hi There,

Its bean a while since I have updated my blog so I will be posting one of the things that I have experience on my work. That is WCF in Different Domain or Server. One of the main error that you may experience is the same as bellow:

Server Error in ‘/’ Application.


The request for security token could not be satisfied because authentication failed.

Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

Exception Details: System.ServiceModel.FaultException: The request for security token could not be satisfied because authentication failed.

Source Error:

Line 87:         
Line 88:         public bool IsExisting(string domain, string username) {
Line 89: return base.Channel.IsExisting(domain, username); Line 90:         }
Line 91:         


Source File: D:\Projects\MobileWeb\MobileWeb\Service References\SykesAD\Reference.cs Line: 89

Stack Trace:

[FaultException: The request for security token could not be satisfied because authentication failed.]
   System.ServiceModel.Security.SecurityUtils.ThrowIfNegotiationFault(Message message, EndpointAddress target) +8904771
   System.ServiceModel.Security.SspiNegotiationTokenProvider.GetNextOutgoingMessageBody(Message incomingMessage, SspiNegotiationTokenProviderState sspiState) +203

[SecurityNegotiationException: The caller was not authenticated by the service.]
   System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg) +4729651
   System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type) +1725

 

This message or exeception happens in production (published files has been uploaded to IIS) and not when you are currently developing it on your Visual Studio. So what is the solution? Here is the simple solution that made me a little crazy upon gazing unto it.

//Let say here is your Instantiation of your WCF
ClassADClient ad = new ClassADClient();
//Then the solution is to add a credential that the system will use on using the said WCF
//Such as like this
ad.ClientCredentials.Windows.ClientCredential = new NetworkCredential(“domain\\username”, “password”);

That’s it thats the solution and you can now use the said service without the said error.

Hope I help you! 

 

Thanks,
Thomie Jose San Agustin, MCP 


Don’t Ever use Inline Database in MSSQL SP and Query

Hi there!

I have been modifying a source code from my work and it has been a little difficult to test the system in multiple instances of database. This is due the previous developers of the said source code used Inline Query Codes and Connection Strings. In addition to that this Inline Queries and even their Stored Procedure use Inline Database, an example is [Database1].[dbo].[tbl_tableName] which should not be in practice if it is using the same database on the whole coding system.

This kind of practice limits the system to use different database name. For an instance you have a web server that serves both Development and Production Environment. You have a project that needs to have Dev and Prod on the said server. If this practice is used you are limited to one Environment at a time nevertheless you modify each script to change that inline database name. So its better to use [dbo].[tbl_tableName]  than [Database1].[dbo].[tbl_tableName] 

Thanks,

Thomie


Sticky Note Short Cuts

Sticky Note Short Cuts

Type of formatting Keyboard shortcut

Bold text

Ctrl+B

Italic text

Ctrl+I

Underlined text

Ctrl+U

Strikethrough

Ctrl+T

Bulleted list

Ctrl+Shift+L

(Press this keyboard shortcut again to switch to a numbered list.)

Increased text size

Ctrl+Shift+>

Decreased text size

Ctrl+Shift+<


Use Admin Account

1 Click on the Start Menu and Type cmd.
2 Run as Administrator mo yung cmd
3 type mo net user administrator /active:yes
4 logoff ka tapos makikita mo yung master admin account
5 login ka gamit yun
6 edit mo yung host file mo
7 ayan save mo at ok na dapat yan



Delete all MS SQL Stored Procedure

Here is a code that you can user to delete all ms sql stored procedure

DECLARE @procedureName varchar(500)
DECLARE cur CURSOR
      FOR SELECT [name] FROM sys.objects WHERE type = 'p'
      OPEN cur

      FETCH NEXT FROM cur INTO @procedureName
      WHILE @@fetch_status = 0
      BEGIN
            EXEC('DROP PROCEDURE ' + @procedureName)
            FETCH NEXT FROM cur INTO @procedureName
      END
      CLOSE cur
      DEALLOCATE cur

MS SQL Generate Script with Data

Here is a step on how you can make MS SQL Generate Script with Data.

  1. Open your Sql Server Management Studio.
  2. Select your database and right click on it follow just like what is in the image below. Refer to image 1
  3. Click Next until you when thru to the image below and click Advance. Refer to image 2
  4. Scroll down and until this row and update the value just like what is below. Refer to image 3
  5. Click Ok and next until you have generated the said script. Refer to image 4
  6. Now you have a create script that includes the schema at it’s data.

My SII now to ICS

Hi I have successfully upgraded My SII now to ICS yesterday. You can also do it now. Just update your KEIS to version 2.0 and plug your device. Just remember to full charge your phone before doing this update.

 

Thanks,
Thomie


IIS Missing ASP .Net 4.0 Pool

Have you’ve been missing some pool in your IIS for your ASP .Net?

The this article entitle IIS Missing ASP .Net 4.0 Pool will help you.

Chances are, you need to install .NET 4 (Which will also take care of a new AppPool for you)

  1. Open your command prompt (Windows + R) and type cmd and press ENTER
    You may need to start this as an administrator if you have UAC enabled.
    To do so, locate the exe (usually you can start typing with Start Menu open), right click and select “Run as Administrator”
  2. Type cd C:\Windows\Microsoft.NET\Framework\v4.0.30319\ and press ENTER.
  3. Type aspnet_regiis.exe -ir and press ENTER again.
    • at this point you will see it begin working on installing .NET’s framework in to IIS for you
  4. Close the DOS prompt, re-open your start menu and right click Computer and select Manage
  5. Expand the left-hand side (Services and Applications) and select Internet Information Services
    • You’ll now have a new applet within the content window exclusively for IIS.
  6. Expand out your computer and locate the Application Pools node, and select it. (You should now see ASP.NET v4.0 listed)
  7. Expand out your Sites node and locate the site you want to modify (select it)
  8. To the right you’ll notice Basic Settings… just below the Edit Site text. Click this, and a new window should appear
  9. Select the .NET 4 AppPool using the Select… button and click ok.
  10. Restart the site, and you should be good-to-go.

(You can repeat steps 7-on for every site you want to apply .NET 4 on as well)

That’s it!

Thanks,
Thomie





Google Implement latest Privacy Policy Last March 1

Hi Everyone,

We all know that Google Implement latest Privacy Policy Last March 1. One of this policy can make our browsing affect what advertisements shows according to what we mostly visit. Some of us might not want that to happen. So if your Google chrome, and I think you are, then you should install this extension that Google themselves encourage their users to have.

Its called Keep My Opt-Outs. Keep My Opt-Outs is an extension for Google Chrome that Permanently opts your browser out of online ad personalization via cookies which the new policy of Google is doing. What you need to do is just install it on your Google Chrome and your ready to go.

Download it now!

Thanks,
Thomie 


Windows 8 Consumer Preview on your PC?

Hi Friends!

Wondering if your computer can seamlessly run Windows 8 Consumer Preview on your PC? The should check this short specification that your computer should meet:

  • 1 GHz or faster processor 
  • 1 GB RAM (32-bit) or 2 GB RAM (64-bit)
  • 16 GB available hard disk space (32-bit) or 20 GB (64-bit)
  • DirectX 9 graphics device with WDDM 1.0 or higher driver
  • 1024 x 768 minimum screen resolution

Take note that 1024 x 768 resolution it alittle sad if your using a notebook because most notebook resolution is 1024 x 600 which doesn’t meet the said requirement. 

Later this day I will try to install it and tell you if it will work.

Also You may download it here

(64bit users) Download this if you are using morethan 4GB of RAM

(32bit users) Else Download this

Product Key:   DNJXJ-7XBW8-2378T-X22TX-BKG7J

Thanks,
Thomie


Remove a Website From Google

Have you ever wondered how to remove a website from Google? Or may be its your website that you don’t want anyone to see on Google when other people search about you. Then You are reading the right article. It just simple as 1-2-3.

Here its how it is done

  1. Go to this website.
  2. Choose either from the two selection if its your website or not and follow the steps
  3. Put the link to your desired page and wait for an approval

That’s it all other things will be taken care by Google. Hope it help you.

Thanks,
Thomie Jose San Agustin


Backup Sticky Notes

I am Roaming around to backup sticky notes on Windows 7 or Windows Vista. And finally I found a solution from the internet.

Here are the steps:

  1. Start
  2. Computer
  3. Navigate to C:\Users\<USER>\AppData\Roaming\Microsoft\Sticky Notes
    • Supply the <USER> with your computer user name
  4. And there is a StickyNotes.snt file you need to be backup-ed.

That’s it you have your sticky note backup-ed.


Tip on Website Structure

Greetings!

Just a few days ago I have encountered a Website Structure that made me really sad. Upon opening the folder I was shocked how was the file structure was handled. I think I can share how you should do the structuring of your files if your going to create a website with any programming language out of scratch.

  1. First group your files accordingly
    • You put all your javascript files inside a folder, let say js,  in which all javascript files are there and no where else. Inside it you can again group it accrdingly to what javascript its all about. If your using jquery put it under a js/jquery folder, if your using tinymce put it on js/tinymce, and so on.
    • The same thing goes to css and other files. Group them so you can easily find them
  2. Second, Use consistent file type
               If your going to use PNG use png in all cases. If your not using transparent images then use JPG.
  3. Lastly, Use naming conventions that you can easily remember

These aren’t all that you can do. But I can say that this can help in improving the readability of your website when you are giving over the development or getting help from another developer. Next time I will be giving some tips on coding on PHP.

Thanks,
Thomie Jose 


Double the fun by using 2 or more USB broadband stick

NOTE: this trick is applicable to Windows operating system only

To really maximize your internet browsing and downloading, if you have two or more USB broadband stick, by having multiple internet connection, here is a simple trick.

FIRST
– configure each USB broadband stick to use different proxies

SECOND
– open registry editor (REGEDIT.exe) and navigate to the following key

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\servic es\NetBT\Parameters

THIRD
-create a DWORD value named RandomAdapter and set the value to 1

FOURTH
-reboot and enjoy

Credits http://www.symbianize.com/showthread.php?t=439571


Pages:1234