DotNet 2 - Applications security

---

• From: bruttogatto@xxxxxxxxx
• Date: Thu, 30 Aug 2007 09:11:49 -0700

---

Hi all

I hope somebody can help me

In a shared environment, I need to use 2 different application pools
with different security levels, here the example:

Application pool 1: Environment for customers has to be rescricted in
some rights (I have altready a trust level just configured)
Application pool 2: Environment for a private WebService used to
administer the server, this has to be "full trust"

My Global web.config is like this:


<location path="Utilities" allowOverride="true">
<system.web>
<identity impersonate="true" />
<trust level="Full" originUrl="" />
</system.web>
</location>

<location allowOverride="false">
<system.web>
<identity impersonate="true"/>
<securityPolicy>
<trustLevel name="Full" policyFile="internal" />
<trustLevel name="High"
policyFile="web_hightrust.config" />
<trustLevel name="Medium"
policyFile="web_mediumtrust.config" />
<trustLevel name="MediumEx"
policyFile="web_extra_mediumtrust.config" />
<trustLevel name="Low"
policyFile="web_lowtrust.config" />
<trustLevel name="Minimal"
policyFile="web_minimaltrust.config" />
<trustLevel name="MySpecialConfig"
policyFile="MySpecialConfig.config" />
</securityPolicy>
<trust level="MySpecialConfig" originUrl="" />
</system.web>
</location>

but it doesn't do what I want... Or every sites goes to "full trust"
or in "MySpecialConfig" trust config

Can somebody tell me where I make mistakes?

Thanks and sorry for terrible english

.

---

• Follow-Ups:
  • Re: DotNet 2 - Applications security
    • From: Dominick Baier

• Prev by Date: Session parameter lost memory
• Next by Date: Re: DotNet 2 - Applications security
• Previous by thread: Session parameter lost memory
• Next by thread: Re: DotNet 2 - Applications security
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: I cant believe... ... To trust Bush is to get fucked. ... it's name is Pool. ... >>> Texas has absorbed about 250,000 evacuees. ... > That would be one place where we differ, Roger. ... (rec.audio.pro) Re: Unable to call COM dlls from application in ASP .NET 2.0 on IIS 6.0 ... application pool. ... guess is that you are having some partial trust issues due to the ... running Windows 2003 server with IIS 6.0. ... at MyComp.MS.DataAccessLayer.LaDa.PrintPage(Customer oneMore) ... (microsoft.public.dotnet.framework.aspnet) Re: Shit a brick, Fast Larry! ... If you wish RSB to return to a place to talk pool then you ding dong ... Trust me, I am going to do nothing to start that one up ... understand it aint easy bein me, ... Yo, I aint go no tie, just a Hawiian shirt. ... (rec.sport.billiard) Re: DOMAIN TRUST ... a trust in a SBS environment. ... So long as you have a Small Business Server environment (where the SBS ... > Logon Failure: ... (microsoft.public.win2000.active_directory) Re: I cant believe... ... To trust Congress ... > wrong in the town of River City, and it's name is Pool. ... let the busses rot in that pool of water. ... (rec.audio.pro)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.dotnet.framework.aspnet.security  > 2007-08