The model which existed in 1.x times permitted untrusted code to create Delegates around virtually any code, and then to inject them into other fully trusted code, staying at the same time outside of the Security checks.
This post digest is 2% of the original post size. Uncompress
Read More on 2.0 changes: Delegates Security (Links)
Read FullTrust means Full Trust (Links)
So, for example, if the following line is there: [assembly: RegistryPermissionAttribute(SecurityAction.RequestRefuse, Unrestricted = true)] that would mean that assembly with it will not be granted any form of Registry access, even if run from the environment that otherwise would let it.
This post digest is 2% of the original post size. Uncompress
Read Some tips on testing managed code Security. (Links)
Read Sample of non-CAS custom permission with declarative form supported. (Links)
Read How to Demand several StrongNameIdentityPermissions "at the same time" in 1.0 and 1.1. (Links)
Enter your search term in the field below.
If you enjoy Eugene Bobukh's WebLog you may also like to read:
The following one-click bookmarking links are made available for your convenience.
Backflip
BlinkBits
Blinklist
blogmarks
Buddymarks
CiteUlike
Connotea
del.icio.us
de.lirio.us
digg
FeedMarker
Feed Me Links!
Furl
Give a Link
Gravee
igooi
kinja
Lilisto
Linkagogo
Linkroll
looklater
Magnolia
maple
netvouz
Newsvine
Open Tag Directory
Raw Sugar
Shadows
Simpy
Spurl
Squidoo
tagtooga
Technorati
Wink
wists
Yahoo My Web
The following one-click subscription links are made available for your convenience.
reddit
