Re: Problem!

From: Arash Aghlara (arash_at_palplanet.com)
Date: 06/06/03 

Date: Fri, 6 Jun 2003 19:35:09 +0430

I have used this way, but this has a problem
All of the customer and ME! have the same key!
I don't want using this was for granting access to cutomer to make the
plugins,
I signed my assembelies and check the access security by link demand in JIT,
now i needed a way
that customer have diffrent key depends on the registeration number of their
server!

Also is there any way to sign an assembly at runtime in code?

Regards
Arash Aghlara
MCP, MCAD

"Shawn Farkas [MS]" <shawnfa@online.microsoft.com> wrote in message
news:eJzbch6KDHA.452@TK2MSFTNGP11.phx.gbl...
> Hi Arash,
>
> One thing you could do is give all the licensed customers a key that
> they must sign their plug ins with. In your assemblies, you could use a
> LinkDemand to make sure the callers were signed by the key you gave to
them.
> You can find more information about LinkDemands here:
>
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/cpguide/htm
l/cpconlinkdemands.asp
>
> -Shawn
>
> --
>
> --------------------------------------------------
> This posting is provided "AS IS" with no warranties, and confers no rights
> "Arash Aghlara" <arash@palplanet.com> wrote in message
> news:#YOXA04KDHA.2232@TK2MSFTNGP11.phx.gbl...
> >I have a problem with my server i have written it in C#.NET
> > This a is TCP/IP based server, that has some TCP/IP channels.
> > The based, will implement some classes and methods.
> > And now we can make plugin for this server.
> > The problem is we don't want allow all customer to make plugins by using
> > it's assemblies.
> > Only Customer with the valid SDK license have to make the plugins by
using
> > the assembelies,
> > How can we implement these security for our server.
> >
> > Regards
> > Arash Aghlara
> > MCP, MCAD
> >
> >
>
>

Relevant Pages

  • Re: Problem!
    ... plugins. ... > All of the customer and ME! ... >>>I have a problem with my server i have written it in C#.NET ... >>> the assembelies, ...
    (microsoft.public.dotnet.security)
  • Re: A Quality Penetration Test
    ... When I wrote about vulnerability scanners and vendors that rely on them for penetration testing someone asked me to comment on how a real penetration test was better. ... This entry is a sanitized description of a real Advanced External Penetration Test that our team delivered to a customer. ... We were able to use those unchecked variables to penetrate into our Customer's Web Server and take control of it. ...
    (Pen-Test)
  • Re: Comcast to drop complimentary Giganews
    ... "We have a strict policy against unsolicited advertising. ... News server admins are routinely contacted by people who don't like what ... Or, for that matter, freedom of speech? ... customer posts to Usenet with your email address, ...
    (comp.sys.mac.system)
  • Re: A Quality Penetration Test
    ... I've once worked for a VAR that sold vulnerability scanning/discovery ... Advanced External Penetration Test that our team delivered to a customer. ... to use those unchecked variables to penetrate into our Customer's Web Server ... automatically dump the contents of the database when executed. ...
    (Pen-Test)
  • Re: 2008 SBS no longer boots
    ... Intel raid card for Server 2003. ... install with one raid driver, or with the other raid driver. ... Any thermal issues and a lot of other hardware problems should show up ... other customer, even a 2 week old one, the problem immediately returned. ...
    (microsoft.public.windows.server.sbs)
Quantcast