If the credentials are valid, the HTTP response includes the authentication ticket in a cookie.Therefore, a hacker attempting to break into your site could create a program that exhaustively sends HTTP requests to the login page with a valid username and a guess at the password.However, the login page currently validates the supplied credentials against a hard-coded list of username and password pairs.
Unfortunately, there is no built-in tool for unlocking a user account.
That means any hacker sniffing the network traffic can see the username and password.
To prevent this, it is essential to encrypt the network traffic by using Secure Socket Layers (SSL).
Similarly, you can use the Comment out the selected lines icon to comment out the selected code in the code-behind class.
Figure 2: Comment Out the Existing Declarative Markup and Source Code in .