Re: running app from network drive

From: ToddT (NOturczytj_at_SPAMmaritz.com)
Date: 04/29/03 

Date: Tue, 29 Apr 2003 12:52:51 -0500

thank you

On Tue, 29 Apr 2003 12:41:53 -0400, "Michel Gallant \(MVP\)"
<neutron@istar.ca> wrote:

>Files originating from network shares belong to the "Local Intranet"
>zone. It is unwise to enable network shares with broad permissions
>(via security config tool Mscorcfg.msc) since network viruses tend
>to target open network shares!
>
>For testing purposes, you might want to do something like:
> - create child code group under All_Code | LocalIntranet_Zone
> - Membership Condition ; I recommend Hash since this will only
> allow the exact assembly you deploy; alternatively you can sign
> your assemblies and use the Publisher condition to isolate permissions
> to assemblies signed with your unique certificate. The disadvantage of
> the Hash evidence is that you need to update the setting whenever you
> recompile your assembly
> - assign whatever permission set your assembly needs.
>
>I recommend reading these intro. articles:
> http://msdn.microsoft.com/msdnmag/issues/02/06/rich/default.aspx
> http://msdn.microsoft.com/msdnmag/issues/02/07/NetSmartClients/default.aspx
>
>when you understand these articles, you can tackle the more abstract article:
> "Security in .NET: Enforce Code Access Rights with the Common Language Runtime"
> http://msdn.microsoft.com/msdnmag/issues/01/02/CAS/default.aspx
>
> - Mitch
>
>"ToddT" <NOturczytj@SPAMmaritz.com> wrote in message
>news:3t6tav47snblmv475tpbhjf7bt38sko7to@4ax.com...
>> i get a security exception when trying to run my .net app from a
>> network file server. i understand that i need to change the
>> permissions for the exe and dlls using the .net framework
>> configuration util located in administration tools.
>>
>> i run the config app, add my app to it, but now i am confused as what
>> to do next. can somebody help?
>>
>> also, can this security permission be set during installation? how?
>>
>

Relevant Pages

  • Re: running app from network drive
    ... Files originating from network shares belong to the "Local Intranet" ... It is unwise to enable network shares with broad permissions ... to assemblies signed with your unique certificate. ... "Security in .NET: Enforce Code Access Rights with the Common Language Runtime" ...
    (microsoft.public.dotnet.security)
  • Re: Reason behind implicit FullTrust LinkDemand?
    ... The removal of permissions from the Internet Zone or the ... time to protect the System* assemblies from this attack. ... the security holes are patched. ... The knew the LinkDemand would be a fix. ...
    (microsoft.public.dotnet.security)
  • Reason behind implicit FullTrust LinkDemand?
    ... The .NET Framework assemblies ... One may counter argue that the implicit FullTrust ... LinkDemand just forces users to grant full trust to code that doesn't really ... permissions describing custom actions allowed or not in the system. ...
    (microsoft.public.dotnet.security)
  • Re: security/strong name/zones clarification needed
    ... Was this also true in the Intranet Zone? ... >child code-group with full permissions granted to any ... >> needs to host the CLR, it creates an AppDomain, but due ... All my assemblies are strong named. ...
    (microsoft.public.dotnet.security)
  • Re: security/strong name/zones clarification needed
    ... several but not publicly documented) about child code-group permissions ... a strong-name, or Authenticode signature evidence. ... This problem would also crop up in the AppDomain case also. ... All my assemblies are strong named. ...
    (microsoft.public.dotnet.security)