If you read my post about Flicker Fix that was included and removed from the first distribution of CSS friendly control adapters beta you might have heard that it created a security hole.

Having a handler or other reading a file that you might specify the path in a parameter is a really really bad idea. It lets for example read possibility to your web.config file to anybody just browsing your site. If your connection string to the db is in clear then… too bad.

Continue reading
  • page 1 of 1
Author's picture

Laurent Kempé

I am an experienced Team Leader & Distinguished Solution Architect with a passion for shipping high-quality products by empowering development team and culture toward an agile mindset. I bring technical vision and strategy, leading engineering teams to move product, processes and architecture forward.

Team Leader, Distinguished Solutions Architect

Illzach, France