ASP.NET trust levels

ASP.NET runs at Full trust by default (trust levels didn’t exist in v1.0).
Change the level attribute above to a different setting to change the permissions of your ASP.NET code.  You can change your trust level, and here’s the rundown of what each one means:
* Full trust – your code can do anything that the account running it can do.
* High trust – same as above except your code cannot call into unmanaged code. i.e. Win32 APIs, COM interop.
* Medium trust – same as above except your code cannot see any part of the file system except its application directory.
* Low trust – same as above except your code cannot make any out-of-process calls. i.e. calls to a database, network, etc.
* Minimal trust – code is restricted from anything but the most trival processing (calculating algorithms).

<system.web>
<trust level=”Full”/>
. . ..
</system.web>

Infragistic NetAdvantage use Full Trust level so there is a security problem once deploy on a share host which often config with Medium Trust level.

Gửi phản hồi

Mời bạn điền thông tin vào ô dưới đây hoặc kích vào một biểu tượng để đăng nhập:

WordPress.com Logo

Bạn đang bình luận bằng tài khoản WordPress.com Log Out / Thay đổi )

Twitter picture

Bạn đang bình luận bằng tài khoản Twitter Log Out / Thay đổi )

Facebook photo

Bạn đang bình luận bằng tài khoản Facebook Log Out / Thay đổi )

Google+ photo

Bạn đang bình luận bằng tài khoản Google+ Log Out / Thay đổi )

Connecting to %s

%d bloggers like this: