RE: .NET Code Access Security fundamentals

Hi,
I understand that you would like to know if there is a full trust
classification for CLR so that you can freely run your SQL CLR project
without encountering security problems.
If I have misunderstood, please let me know.

From the article, "CLR Integration Security",
http://msdn2.microsoft.com/en-us/library/ms254940.aspx, we can find that
there are at least four level security factors you should consider. No one
setting can eliminate all of them, however I think that your real concern
is for CAS and SQL Server Host Policy Level Permission Sets.

For CAS, though it is not recommended, you can turn it off via caspol.exe
utility. For example:
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727> caspol -s off
You may also refer to this article:
Troubleshooting common permissions and security-related issues in ASP.NET
http://support.microsoft.com/default.aspx?scid=kb;EN-US;910449

For SQL Server Host Policy Level Permission, an easiest way is to set your
database trustworthy which I have mentioned in your other post. You may
also refer to:
Creating an Assembly
http://msdn2.microsoft.com/en-us/library/ms345106.aspx

Please keep in mind that both of the two methods are not commonly
recommended. You may use the above suggestions only when you do not care
about the security risk.

Hope this helps. Please feel free to let me know if you have any other
questions or concerns. Have a nice day!


Best regards,
Charles Wang
Microsoft Online Community Support

======================================================
When responding to posts, please "Reply to Group" via
your newsreader so that others may learn and benefit
from this issue.
======================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
======================================================

.