Re: Stong named Managed C++ Assembly still needs Full trust?
From: Moe Khosravy (MKhosravy_NO_SPAMM_@VitalImages.com)
Date: 01/24/03
- Next message: Ivan Medvedev [MS]: "Re: Compatibility with CryptDeriveKey()"
- Previous message: Jean Paul: "Changing user ASPNET"
- In reply to: Ivan Medvedev [MS]: "Re: Stong named Managed C++ Assembly still needs Full trust?"
- Next in thread: Ivan Medvedev [MS]: "Re: Stong named Managed C++ Assembly still needs Full trust?"
- Reply: Ivan Medvedev [MS]: "Re: Stong named Managed C++ Assembly still needs Full trust?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Moe Khosravy" <MKhosravy_NO_SPAMM_@VitalImages.com> Date: Fri, 24 Jan 2003 09:28:03 -0800
Hi Ivan,
Thanks for the reply...
So, assuming that I can NOT move the code to the user's
MyComputer and yet I still want the managed C++ code and
DLLs to run, how can I use
System.Security.SecurityManager to add my site as a
Trusted Site in IE? Is this required or not?
It seems as though I HAVE to add our domain to the list
of trusted sites in IE to allow the code to run without
any PolicyExceptions...
Thanks,
Moe
>-----Original Message-----
>Moe -
>In the current version C++ produces code requires
permission to skip
>verification in order to run. This permission is granted
by
>SecurityPermission with flag SkipVerification, which is
a part of the
>built-in permission set called "FullTrust ". To make
this code run you will
>need to change the security policy on the client machine
or move the code to
>a local drive thus putting it into "MyComputer" zone
that gets FullTrust by
>default. If you can not move the code you will need to
modify the policy,
>which is easy to do programmatically (using
System.Security.SecurityManager
>class), via script (using a tool called caspol.exe) or
manually (using ".NET
>Framework Configuration" applet from the control panel).
>For example, if you are running the code off the
intranet, your caspol
>command would be something like the following:
>caspol -ag 1.2 -strong -file <assembly_file> -noname -
noversion FullTrust
>
>Hope this helps.
>--Ivan
>
>This posting is provided "AS IS" with no warranties, and
confers no rights
>
>
>"Moe Khosravy" <MKhosravy_NOSPAM@VitalImages.com> wrote
in message
>news:O#knMypwCHA.2288@TK2MSFTNGP09...
>> Hi Guys,
>>
>> We've got a C# Windows Forms application relying on
some Managed C++ DLLs.
>>
>> All are strong named but I notice with Zero touch
deployment, I get a
>> System.IO.FileLoadException: Unverifiable assembly
exception as soon as a
>> Managed C++ DLL is pulled in. As soon as I bump up the
security to FULL
>> TRUST for "Trusted Sites" using the .NET Framework
Wizards, everything is
>> fine. The app and its managed 3D libraries, stream
across IIS to the
>client
>> and all is well.
>>
>> My problem: How to imitate the old ActiveX license
scheme? We'd like this
>to
>> be EASY for the user. Go to a URL, agree to one
licensing/security
>> dialogbox, stream down the app, and use. What should I
look at to achieve
>> this?
>>
>> In other words, I'd like to programmatically add our
site to the user's
>> Trusted Sites and adjust security to FULL. Obviously
can't be completely
>> transparent, but want some pointers on how to proceed
so that it can be
>> achieved using a single interaction with the user.
>>
>> Thanks,
>> Moe
>> www.vitalimages.com
>>
>>
>
>
>.
>
- Next message: Ivan Medvedev [MS]: "Re: Compatibility with CryptDeriveKey()"
- Previous message: Jean Paul: "Changing user ASPNET"
- In reply to: Ivan Medvedev [MS]: "Re: Stong named Managed C++ Assembly still needs Full trust?"
- Next in thread: Ivan Medvedev [MS]: "Re: Stong named Managed C++ Assembly still needs Full trust?"
- Reply: Ivan Medvedev [MS]: "Re: Stong named Managed C++ Assembly still needs Full trust?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
