tag:blogger.com,1999:blog-3586937460106572343.post8390798547231009907..comments2023-03-06T13:58:28.114+05:30Comments on Simplifying Logic | Rahul Chugh: Digitally Signing App.configRahul Chughhttp://www.blogger.com/profile/17693469018399820731noreply@blogger.comBlogger6125tag:blogger.com,1999:blog-3586937460106572343.post-50818330846190680482022-04-04T16:46:02.244+05:302022-04-04T16:46:02.244+05:30Best Places To Bet On Boxing - Mapyro
Where To Bet...Best Places To Bet On Boxing - Mapyro<br />Where To Bet On Boxing. It's a sports betting <a href="https://www.casino-roll.com/" rel="nofollow">casino-roll.com</a> event in which you bet on the outcome <a href="https://www.sporting100.com/" rel="nofollow">스포츠 토토 사이트</a> of a game. In the boxing world, <a href="https://www.mapyro.com/" rel="nofollow">메이피로출장마사지</a> each player must <a href="https://wooricasinos.info/%EC%98%A8%EB%9D%BC%EC%9D%B8%20%EC%B9%B4%EC%A7%80%EB%85%B8" rel="nofollow">wooricasinos.info</a> decide if <a href="https://septcasino.com/review/merit-casino/" rel="nofollow">https://septcasino.com/review/merit-casino/</a> or not toobediencecaiazzohttps://www.blogger.com/profile/05269349303929278756noreply@blogger.comtag:blogger.com,1999:blog-3586937460106572343.post-79976223943789659412011-10-10T19:18:01.357+05:302011-10-10T19:18:01.357+05:301. Why would I keep private key on client - I woul...1. Why would I keep private key on client - I would never ever distribute my private key. : You don't need to. Use Public key cryptography. Encrypt using your private key. And keep public key in client. Developer won't care if anyone find the public key and decrypt the comment, as only a fool would do that :).<br /><br />2. Once I add new content(the comment that you are saying) to the config its no more the same config : Yes, that's why you need to delete the comment before matching. See point 5.Anonymoushttps://www.blogger.com/profile/06997644825242939539noreply@blogger.comtag:blogger.com,1999:blog-3586937460106572343.post-91326903295024255982011-10-10T19:00:51.629+05:302011-10-10T19:00:51.629+05:30@Ankush... thanks for the comment. I guess there a...@Ankush... thanks for the comment. I guess there are some things that you are missing :<br />1. Why would I keep private key on client - I would never ever distribute my private key.<br />2. Once I add new content(the comment that you are saying) to the config its no more the same config - its modified. XMLDSIG takes care of this while it adds signature.Rahul Chughhttps://www.blogger.com/profile/17693469018399820731noreply@blogger.comtag:blogger.com,1999:blog-3586937460106572343.post-10148558455577340282011-10-10T16:53:46.405+05:302011-10-10T16:53:46.405+05:30Nice. But using this we would loose the "Sand...Nice. But using this we would loose the "Sandbox" nature of app. And majority of clients won't like to add a certificate for a app.<br /><br />If all we want is to ensure the tempering with app.config than we achieve it as following:<br />1. Encrypt your app.config with any private key.<br />2. add the encrypted content to your app.config file as a comment.<br />3. Now every time your application loads, read this specific comment.<br />4. Decrypt the comment using the private key.<br />5. Match the decrypted result with app.config. Make sure you delete the comment part from the app.config before matching.<br />6. If the result matches then app.config is not tempered.Anonymoushttps://www.blogger.com/profile/06997644825242939539noreply@blogger.comtag:blogger.com,1999:blog-3586937460106572343.post-80256266718453589022011-10-09T23:08:10.748+05:302011-10-09T23:08:10.748+05:30Thanks buddy!!..Thanks buddy!!..Rahul Chughhttps://www.blogger.com/profile/17693469018399820731noreply@blogger.comtag:blogger.com,1999:blog-3586937460106572343.post-16938147801243810532011-10-07T11:14:20.322+05:302011-10-07T11:14:20.322+05:30Nice post!!Nice post!!Himanshu Kumarhttps://www.blogger.com/profile/17247062476652528369noreply@blogger.com