Welcome to MSDN Blogs Sign in | Join | Help

Browse by Tags

All Tags » CAS » ClickOnce   (RSS)
Monday, May 12, 2008 10:49 AM

FullTrust on the LocalIntranet

We released the first beta of .NET 3.5 SP 1 this morning, and it includes a change to the default grant set for applications launched from the LocalIntranet zone. The quick summary is that as of .NET 3.5 SP1, applications run from a network share will
Posted by shawnfa | 0 Comments
Filed under: , , ,
Tuesday, October 02, 2007 9:24 AM

Avoiding Assembly Level Declarative Security

I've written in the past about the three assembly level declarative security actions : RequestMinimum, RequestOptional, and RequestRefuse. Although the CLR has supported these since v1.0, I tend to stay away from using them as much as I possibly can,
Posted by shawnfa | 0 Comments
Filed under: , , ,
Wednesday, March 07, 2007 11:25 AM

Specifying Permissions for IE Controls in Orcas

One of my most read blog posts (and one of the reasons I created this blog in the first place -- to answer what was one of the most asked questions on the old .NET Security newsgroup), is my post about granting managed controls hosted in IE extra permissions
Posted by shawnfa | 1 Comments
Filed under: , , , ,
Saturday, July 15, 2006 7:00 AM

ClickOnce Same Site Permissions

ClickOnce applications can request that they be granted permission to contact their site of origin. In Visual Studio this is done by clicking on the Advanced button in the Security tab of the project properties and checking "Grant the application access
Posted by shawnfa | 2 Comments
Filed under: , ,
Thursday, July 13, 2006 11:43 AM

Sandboxed Applications Can’t Elevate Their Own Permissions

Every once in a while someone will ask how they can do something similar to these caspol commands from within their application. Generally, they want their application to be deployed from the Internet or a file share and don’t want users to have to deal
Posted by shawnfa | 6 Comments
Filed under: , , ,
Wednesday, April 19, 2006 8:35 AM

5 Reasons to Choose Simple Sandboxing

When it comes time to host some partially trusted code in your application, perhaps as a part of an Add-In model, you’ve got a few options to choose from. How do you decide which is the best way to go? Thankfully the answer to this one is relatively straightforward
Posted by shawnfa | 3 Comments
Filed under: , , ,
Tuesday, August 09, 2005 12:02 PM

A Closer Look at the Simple Sandboxed AppDomain

Yesterday we took a look at Whidbey's new Simple Sandboxing API . At first glance this API does seem relatively simple, however when you start to look closer at the AppDomain that is created for your sandboxed code, there are a few surprising properties.
Posted by shawnfa | 3 Comments
Monday, June 06, 2005 4:06 PM

Console Applications requre UIPermission

Starting with beta 2, we’ve made a change around what permissions are required to launch a console application. When I talk about console applications here, I’m talking about applications that specify they should run with the WINDOWS_CUI subsystem
Posted by shawnfa | 1 Comments
Filed under: , ,
Tuesday, September 07, 2004 4:27 PM

Deploying Policy on v1.0 and 1.1 of the CLR

A lot of the time, someone has written an application that won't run under the CLR's default security settings and needs to provide a mechanism for their users to modify the policy easily in order to allow their application to run. For Whidbey, ClickOnce
Posted by shawnfa | 9 Comments
Filed under: , , ,
Friday, July 30, 2004 12:24 PM

Whidbey's New SecurityException

One of the more difficult things to debug with .NET 1.0 and 1.1 is the security exception. With these frameworks generally the only information that you got was the state of the failed permission. Due to the complexity of debugging security problems,
Posted by shawnfa | 14 Comments
 
Page view tracker