aghdennis
asked on
EventValidation turned off
Hello
It is recommended in msdn not to turn off the event validation property for an asp.net web page. Can an expert tell me the real dangers involved in turning off this page property?
It is recommended in msdn not to turn off the event validation property for an asp.net web page. Can an expert tell me the real dangers involved in turning off this page property?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks all. I was handling the doPostBack function manually via javascript but could not allocate a value to the eventArgument of the input type hidden field due to an error regarding RaisingEventValidation. However when I turned eventvalidation off, it worked. I was therefore trying to weigh the loss in security when the property is turned off.
Thanks guys for your contribution.
Thanks guys for your contribution.
Here is some additional info http://stackoverflow.com/questions/9531363/is-it-a-security-risk-setting-enableeventvalidation-false-in-this-situation
http://weblogs.asp.net/bleroy/archive/2004/08/18/216861.aspx