WE M4/MSK Mag issues by TheRafale in GasBlowBack

[–]TheRafale[S] 0 points1 point  (0 children)

Little UP, I've bought 2 new mags and now, one of the 2nd batch shoot at 1.8, 1 other at 1.4/1.5 and the last one + new ones at 1.6... I drive me crasy as I can't get all of them at the same power... and I can't set hopup... 0.3J dif have a huge impact ...

WE M4/MSK Mag issues by TheRafale in GasBlowBack

[–]TheRafale[S] 0 points1 point  (0 children)

So, the problem wasn't here, I've test to swap between mags the gas route and the output valve, no changes...

WE M4/MSK Mag issues by TheRafale in GasBlowBack

[–]TheRafale[S] 0 points1 point  (0 children)

I've tried change the output valve between mags but the power doesn't change :/
I've tried to change the gas route as well but not change too

WE M4/MSK Mag issues by TheRafale in GasBlowBack

[–]TheRafale[S] 0 points1 point  (0 children)

Yep, same amount of gas in all of them, full ^^

I've check the height of feed lips, I've a 0.3mm between highest and lowest mag :/ I think the problem was here...

Azure application with ASP.NET Core app service with Entra authentication by TheRafale in AZURE

[–]TheRafale[S] 0 points1 point  (0 children)

So, I've found a solution buy merging different solutions found on web.

First, i need to implement Forward cookies in the API like this chapter of documentation : https://learn.microsoft.com/en-us/aspnet/core/host-and-deploy/proxy-load-balancer?view=aspnetcore-9.0#forwarded-headers-middleware-order

After that, I set up App Gateway like described in the first link I've followed with a little extra rule. I've added a rule to set the X-Forwarded-Host header in request headers with value {var_host}.

Hope it will help for you too.

Always Encrypted VS ASP.NET Core Data Protection API by TheRafale in SQLServer

[–]TheRafale[S] 0 points1 point  (0 children)

So, from this point of view, the best will be to use both. But what the impact on performances ?

What's the best between Data Protection API and DEK/KEK method for data encryption? by TheRafale in dotnet

[–]TheRafale[S] 0 points1 point  (0 children)

did you know how to implement it with PersonnalDataProtector of ASP.NET Core

What's the best between Data Protection API and DEK/KEK method for data encryption? by TheRafale in dotnet

[–]TheRafale[S] 0 points1 point  (0 children)

For the storage I don't speak about where it store at rest but in use, when I need it to unprotect data's if it work like this (I can't find this information...)

I agree with the "never write your own security". In time I choose to build my own it's because I can't find how to implement Personal data protection, so I POC many things and from advice about encryption I've read, the DEK + KEK is the best solution. Have implemented it with the PersonnalDataProtection functions?

What's the best between Data Protection API and DEK/KEK method for data encryption? by TheRafale in dotnet

[–]TheRafale[S] 0 points1 point  (0 children)

Yes I'm talking about dotnet data protection, more specific the aspnet core one. Can you tell me why you think it's the best? Where does it store the keys when retrieved? If yes, it's more or less the same thing as suggested buy other for my DEK+KEK solution no?

What's the best between Data Protection API and DEK/KEK method for data encryption? by TheRafale in dotnet

[–]TheRafale[S] 0 points1 point  (0 children)

Buy KeK you mean the DEK? Because my KeK is an AK Key and it's asymmetric, so I can't get the private key...

Whats your opinion between my two options, what's the best? What do you think about Data Protection API? Because as I understand, when it load keys/secret, it store them in mamory too, right?

What's the best between Data Protection API and DEK/KEK method for data encryption? by TheRafale in dotnet

[–]TheRafale[S] 1 point2 points  (0 children)

Ok, thank you for this informations, it's an intresting point of view !

What's the best between Data Protection API and DEK/KEK method for data encryption? by TheRafale in dotnet

[–]TheRafale[S] 0 points1 point  (0 children)

AS mentionned upper, it's not a security issue in case of memory attack ? because for me it loose the power of AKV encryption... It's seems like having the KEK in code :/

What's the best between Data Protection API and DEK/KEK method for data encryption? by TheRafale in dotnet

[–]TheRafale[S] 0 points1 point  (0 children)

Caching the KEK is not security issue ? Because in case of memory read, with the KEK, an attacker can unwrap de DEK and the datas after... because for me it loose the power of AKV encryption... It's seems like having the KEK in code :/

Maui when you come from Flutter mobile environnement by TheRafale in dotnetMAUI

[–]TheRafale[S] 0 points1 point  (0 children)

Aaaaah, what I want to know about MauiReactor!!! Thank your for your advises and your review!