Re: running .exe from network share
From: Shawn Farkas (shawnfa_at_online.microsoft.com)
Date: 06/18/04
- Previous message: Enzo Maini: "SAML, Liberty Alliance, WS-Federation using C#?"
- In reply to: Hernan de Lahitte: "Re: running .exe from network share"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 18 Jun 2004 20:26:07 GMT
I've also got a blog entry on modifying policy to allow something like this to work:
http://blogs.msdn.com/shawnfa/archive/2003/06/20/57023.aspx
In this situation, I would recommend signing your application's assemblies with a key, and then trusting the public key (without the version) on each
client machine. This will allow you to deploy future applications, and upgrades to the existing application without modifying policy again.
-Shawn
http://blogs.msdn.com/shawnfa
-- This posting is provided "AS IS" with no warranties, and confers no rights. Note: For the benefit of the community-at-large, all responses to this message are best directed to the newsgroup/thread from which they originated. -------------------- >Reply-To: "Hernan de Lahitte" <hernan@lagash.com> >From: "Hernan de Lahitte" <hernan@lagash.com> >References: <u9pfqDJVEHA.2508@TK2MSFTNGP12.phx.gbl> >Subject: Re: running .exe from network share >Date: Fri, 18 Jun 2004 13:14:22 -0300 >Lines: 43 >Organization: Lagash Systems S.A. >X-Priority: 3 >X-MSMail-Priority: Normal >X-Newsreader: Microsoft Outlook Express 6.00.2800.1409 >X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 >Message-ID: <ucmGb7UVEHA.1472@TK2MSFTNGP09.phx.gbl> >Newsgroups: microsoft.public.dotnet.security >NNTP-Posting-Host: 200.81.13.117 >Path: cpmsftngxa10.phx.gbl!TK2MSFTFEED01.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP09.phx.gbl >Xref: cpmsftngxa10.phx.gbl microsoft.public.dotnet.security:6545 >X-Tomcat-NG: microsoft.public.dotnet.security > >There are several issues and differences when you run an app on your local >machine and on a network share. The latter is placed on the "Intranet Zone" >and therefore has lower privileges than when you are on your machine >(Fulltrust permissions by default). >So if you want to develop and debug/test your code as if you where running >from your network share, take a look at this post: >http://weblogs.asp.net/hernandl/archive/2004/03/26/96800.aspx > >At the same time, you should "prepare" your app to be able to run under a >restricted Zone and you might check out this post: >http://blogs.msdn.com/shawnfa/archive/2003/06/20/57023.aspx > > >-- >Hernan de Lahitte >Lagash Systems S.A. >http://weblogs.asp.net/hernandl > > >This posting is provided "AS IS" with no warranties, and confers no rights. > >"Jesse" <jaufiero@cascodev.com> wrote in message >news:u9pfqDJVEHA.2508@TK2MSFTNGP12.phx.gbl... >> Hello, >> >> Is there any definitive place to look for information regarding the topic >> of: security considerations when running a WinForms application from a >> network share (as opposed to running from the local client machine)? >> >> We'd like to avoid various deployment issues by simply placing our .exe on >> the network and having all of the client pc's access the .exe via a >shortcut >> on each client desktop. >> >> Are there any major pitfalls to this approach (specific to security... or >> otherwise)? >> >> Thank You, >> Jesse >> >> > > >
- Previous message: Enzo Maini: "SAML, Liberty Alliance, WS-Federation using C#?"
- In reply to: Hernan de Lahitte: "Re: running .exe from network share"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
