Re: sn.exe -Vr assembly
From: Gecko (nada_at_nada.com)
Date: 01/21/05
- Previous message: Valery Pryamikov: "Re: How is .net generating extra bits in MD5?"
- In reply to: Nicole Calinoiu: "Re: sn.exe -Vr assembly"
- Next in thread: Nicole Calinoiu: "Re: sn.exe -Vr assembly"
- Reply: Nicole Calinoiu: "Re: sn.exe -Vr assembly"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 21 Jan 2005 16:44:38 -0600
> Why would a user's modification of your assemblies on their own machine
> have any effect on you?
Well at first, it doesn't appear to have any effect since I do all data
validation on the server so in theory, they could change that file until
their hard drives burns and it should be no problem.
However, I must be missing something because if tampering with local files
was not an issue, why would anybody care to strong name their assemblies? I
mean, if they are logged as administrator a hacker can do just about
anything he or she wanted strong name or not CAS or no CAS, and if they are
logged as regular users, you could install the files on GAC or on the
ProgramFiles folder and the user would have no access to it so they can't
touch it so why bother?
So far I have been reading and doing very few exercise concerning Strong
Name, CAS, DACL etc, next week I am hoping to have some time to start
putting this knowledge to work and in the process understand this better, I
hope thing will become clear then!!
Thanks for all comments.
- Previous message: Valery Pryamikov: "Re: How is .net generating extra bits in MD5?"
- In reply to: Nicole Calinoiu: "Re: sn.exe -Vr assembly"
- Next in thread: Nicole Calinoiu: "Re: sn.exe -Vr assembly"
- Reply: Nicole Calinoiu: "Re: sn.exe -Vr assembly"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
