In my last post ( Caller Impersonation for WCF Services Hosted Under IIS Appears Broken ), I laid out my rationale for why I felt that the security of services impersonating a caller when hosted under IIS was broken. To be responsible, I feel it necessary Read More...