RE: Can an Assert issued following a Deny override it?
From: Shawn Farkas (shawnfa_at_online.microsoft.com)
Date: 08/24/04
- Next message: Shawn Farkas: "Re: code access security with URL condition"
- Previous message: Shawn Farkas: "Re: Identity Permission and Code Access Permission classes"
- In reply to: Novice: "Can an Assert issued following a Deny override it?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 24 Aug 2004 21:57:08 GMT
Yes, this will work -- I've posted a more complete explanation on the other post.
-Shawn
http://blogs.msdn.com/shawnfa
-- This posting is provided "AS IS" with no warranties, and confers no rights. Note: For the benefit of the community-at-large, all responses to this message are best directed to the newsgroup/thread from which they originated. -------------------- >Thread-Topic: Can an Assert issued following a Deny override it? >thread-index: AcSJ5ZUzdIWOjFDKTDGT5JbqnvJukA== >X-WBNR-Posting-Host: 216.90.243.3 >From: =?Utf-8?B?Tm92aWNl?= <6tc1ATqlinkDOTqueensuDOTca> >Subject: Can an Assert issued following a Deny override it? >Date: Tue, 24 Aug 2004 07:21:01 -0700 >Lines: 21 >Message-ID: <5BC8EC3A-26DF-41F0-A9B0-085D3ED2A3EA@microsoft.com> >MIME-Version: 1.0 >Content-Type: text/plain; > charset="Utf-8" >Content-Transfer-Encoding: 7bit >X-Newsreader: Microsoft CDO for Windows 2000 >Content-Class: urn:content-classes:message >Importance: normal >Priority: normal >X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0 >Newsgroups: microsoft.public.dotnet.security >NNTP-Posting-Host: TK2MSFTNGXA03.phx.gbl 10.40.1.29 >Path: cpmsftngxa10.phx.gbl!TK2MSFTNGXA03.phx.gbl >Xref: cpmsftngxa10.phx.gbl microsoft.public.dotnet.security:7213 >X-Tomcat-NG: microsoft.public.dotnet.security > >Another poster wrote: >------------------ >Additionally, assuming I have FullTrust, and I write the .dll that doesn't >have correct public key (so you try to block me from the file), all I have to >do is do an Assert on that permission, and the Assert will be found in the >callstack before your deny, allowing me access to the directory. >------------------ >Is it the case that you can override an existing Deny that my application has >already specified? > >I.E. if I write an application and the first line of code I put is a "Deny" >on File IO to the C drive and then I invoke code (exp a method) in your >assembly - you can subsequently write an Assert that will override the Deny >that has already been processed (and yes this assumes your assembly has full >trust)? > >Thanks, >Novice > >PS If the above is true - what permission in .Net would stop someone from >being able to override a previously issued Deny? >
- Next message: Shawn Farkas: "Re: code access security with URL condition"
- Previous message: Shawn Farkas: "Re: Identity Permission and Code Access Permission classes"
- In reply to: Novice: "Can an Assert issued following a Deny override it?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
