T
tags and attributes, 610611
tampering
assemblies, 149
described, 16
target environment, 152
identifying, 151
and trust levels, 104105
TCP/IP database servers, 514
TCP/IP stack
hardening, 647, 671
how to harden, 755766
Web servers, 440441
TCPChannel, 670
custom process, 670
with IPSec, 481
in trusted server scenarios, 352353
vulnerabilities, 639
technologies
identification of, 5152
in scope, l
terminal access controller access control system. See TACACS
terminal services
database servers, 539540
Web servers, 472473
third party security notification services, 684
third party security- related Web sites, 682
Thread.CurrentPrincipal property, 358
threading, checklists, 738
threat modeling
followup, 6566
overview, 45
principles of, 4749
process, xlix, lxxviii
threats
and attacks to data access code, 369
categories, 1618
data access, 368369
described, 5, 13, 45
documenting, 62
identifying, lxxviilxxix, 5657
modeling process, lxxviii
rating, 63
remoted components , 349350
secure Web services, 320321
serviced components, 300301
Web pages and controls, 254255
Web servers, 422423
tier-by- tier analysis, 100
tools
database servers, 520
Web servers, 447
topologies
deployment, 7374
details, 762763
<trace> element
ASP.NET application and Web services, 572
Web server configuration, 657
tracing
ASP.NET application and Web services, 571572
disabling, 630
Web servers, 463
trojan horses
application server, 478479
described, 21
Web servers, 426
<trust> element
and code access security, 326
configuring trust levels with, 224227
Web server configuration, 661
Web service's trust level, 326
trust levels
in ASP.NET, 232234, 555556
configuring, 224227
locking, 226
trusted server scenarios
remoting, 353
and TCPChannel, 352353
trusted subsystem model that supports database connection pooling, 85
<trustLevel> element, 227
TTL expired messages, 411
type safe SQL parameters, 377
TypeFilterLevel property, 639