473,385 Members | 1,856 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > c# / c sharp > questions > security issues

Join Bytes to post your question to a community of 473,385 software developers and data experts.

Security issues

I am working on a small project that I started at home. It originally was
on the C: drive and was working properly. After bringing it to work I
placed it in a folder on the server with the other projects folders and now
it will not let me run it from VS.

I get a security exception:

/////
An unhandled exception of type 'System.Security.SecurityException' occurred
in JC Test Fixture.exe
Additional information: Security error.
/////

Any ideas?
--
Ken Galer
Preferred Utilities Corp.
kgaler@-NoSPaM-preferred-mfg.com
Nov 15 '05 #1
6 1462
By default, executables on an intranet execute with lower permissions than
executables on your local box. You must change the security policy to raise
the trust level based on that assembly's evidence (trust the location,
signer, etc.) or move the executable.

--
Mickey Williams
Author, "Microsoft Visual C# .NET Core Reference", MS Press
www.servergeek.com
"Ken Galer" <ke*@nospampreferred.com> wrote in message
news:eu**************@TK2MSFTNGP10.phx.gbl...
I am working on a small project that I started at home. It originally was
on the C: drive and was working properly. After bringing it to work I
placed it in a folder on the server with the other projects folders and now it will not let me run it from VS.

I get a security exception:

/////
An unhandled exception of type 'System.Security.SecurityException' occurred in JC Test Fixture.exe
Additional information: Security error.
/////

Any ideas?
--
Ken Galer
Preferred Utilities Corp.
kgaler@-NoSPaM-preferred-mfg.com

Nov 15 '05 #2
I could not make any sense of that. Where do I change the permissions
level? Whos security policy?

Is this something that is is done is VS or do I have to get the netword
admin involved?

What possible reason would the network think that I don't have rights to a
file that I own and placed in the folder that I made?

What is an "assembly evidence"?

Where can I find information on this problem? Tthe MSDN libray has a load
of information, none that I have found that helps.

Ken

"Mickey Williams" <my first name at servergeek.com> wrote in message
news:uV**************@TK2MSFTNGP11.phx.gbl...
By default, executables on an intranet execute with lower permissions than
executables on your local box. You must change the security policy to raise the trust level based on that assembly's evidence (trust the location,
signer, etc.) or move the executable.

--
Mickey Williams
Author, "Microsoft Visual C# .NET Core Reference", MS Press
www.servergeek.com
"Ken Galer" <ke*@nospampreferred.com> wrote in message
news:eu**************@TK2MSFTNGP10.phx.gbl...
I am working on a small project that I started at home. It originally was on the C: drive and was working properly. After bringing it to work I
placed it in a folder on the server with the other projects folders and

now
it will not let me run it from VS.

I get a security exception:

/////
An unhandled exception of type 'System.Security.SecurityException'

occurred
in JC Test Fixture.exe
Additional information: Security error.
/////

Any ideas?
--
Ken Galer
Preferred Utilities Corp.
kgaler@-NoSPaM-preferred-mfg.com


Nov 15 '05 #3
Consult
http://msdn.microsoft.com/library/de...scorcfgmsc.asp

and associated pages. You want to "increase assembly trust" with the tool.
This tool does not run under Windows 98SE. I asked a similar question on
this forum as to sharing an assembly resident on an XP system, to execute on
a W98SE system (with the framework installed thereupon), but did not receive
an answer. But if you are sharing across XP systems you should be OK.

Regards,
"Ken Galer" <ke*@nospampreferred.com> wrote in message
news:Ou**************@TK2MSFTNGP11.phx.gbl...
I could not make any sense of that. Where do I change the permissions
level? Whos security policy?

Is this something that is is done is VS or do I have to get the netword
admin involved?

What possible reason would the network think that I don't have rights to a
file that I own and placed in the folder that I made?

What is an "assembly evidence"?

Where can I find information on this problem? Tthe MSDN libray has a load
of information, none that I have found that helps.

Ken

"Mickey Williams" <my first name at servergeek.com> wrote in message
news:uV**************@TK2MSFTNGP11.phx.gbl...
By default, executables on an intranet execute with lower permissions than
executables on your local box. You must change the security policy to

raise
the trust level based on that assembly's evidence (trust the location,
signer, etc.) or move the executable.

--
Mickey Williams
Author, "Microsoft Visual C# .NET Core Reference", MS Press
www.servergeek.com
"Ken Galer" <ke*@nospampreferred.com> wrote in message
news:eu**************@TK2MSFTNGP10.phx.gbl...
I am working on a small project that I started at home. It originally was on the C: drive and was working properly. After bringing it to work I
placed it in a folder on the server with the other projects folders

and now
it will not let me run it from VS.

I get a security exception:

/////
An unhandled exception of type 'System.Security.SecurityException'

occurred
in JC Test Fixture.exe
Additional information: Security error.
/////

Any ideas?
--
Ken Galer
Preferred Utilities Corp.
kgaler@-NoSPaM-preferred-mfg.com



Nov 15 '05 #4

Hi Ken,

Thank you for posting in the community!

Based on my understanding, you created an assembly on your machine, which
works well. Then you move this assembly to another machine, and its access
gets a security exception.

==============================================
I agree with Mickey that your network assembly does not enough permissions.
So you should increase your assembly permission.

The simplest way to get this done is creating a New code group, which use
your assembly's strong name as condition. Then use "FullTrust" permission
set for this code group.

I think you need to know much about .Net Code Access Security theory, there
is a good article talks about this, please refer to "Understanding .NET
Code Access Security" at:
http://www.codeproject.com/dotnet/UB_CAS_NET.asp

This article gives you a step by step sample of how to control access
permission.

==============================================
Please apply my suggestion above and let me know if it helps resolve your
problem.

Thank you for your patience and cooperation. If you have any questions or
concerns, please feel free to post it in the group. I am standing by to be
of assistance.
Have a nice day!!

Best regards,
Jeffrey Tan
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
This posting is provided "as is" with no warranties and confers no rights.

Nov 15 '05 #5
I was able to get the Framework Configuration snap-in to work but only after
I realized (after about 3 hours) that there were TWO versions to choose from
on my machine. It looks like I was tweaking the one for Version 1.0. When
I used the 1.1 version things started to make sense again. I made a new
Code Group in Runtime Security Policy/Machine/Code Groups and made my mapped
netword drive fully trusted.

Thanks to all
""Jeffrey Tan[MSFT]"" <v-*****@online.microsoft.com> wrote in message
news:R%****************@cpmsftngxa07.phx.gbl...

Hi Ken,

Thank you for posting in the community!

Based on my understanding, you created an assembly on your machine, which
works well. Then you move this assembly to another machine, and its access
gets a security exception.

==============================================
I agree with Mickey that your network assembly does not enough permissions. So you should increase your assembly permission.

The simplest way to get this done is creating a New code group, which use
your assembly's strong name as condition. Then use "FullTrust" permission
set for this code group.

I think you need to know much about .Net Code Access Security theory, there is a good article talks about this, please refer to "Understanding .NET
Code Access Security" at:
http://www.codeproject.com/dotnet/UB_CAS_NET.asp

This article gives you a step by step sample of how to control access
permission.

==============================================
Please apply my suggestion above and let me know if it helps resolve your
problem.

Thank you for your patience and cooperation. If you have any questions or
concerns, please feel free to post it in the group. I am standing by to be
of assistance.
Have a nice day!!

Best regards,
Jeffrey Tan
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
This posting is provided "as is" with no warranties and confers no rights.

Nov 15 '05 #6

Hi Ken,

I am glad you got what you want.
If you have any further concern, please feel free to tell me, I will work
with you.

Best regards,
Jeffrey Tan
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
This posting is provided "as is" with no warranties and confers no rights.

Nov 15 '05 #7
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

28
Who should security issues be reported to?
by: grahamd | last post by:
Who are the appropriate people to report security problems to in respect of a module included with the Python distribution? I don't feel it appropriate to be reporting it on general mailing lists.
Python
2
ASP security model / file permissions to allow updating of a database
by: Fran Tirimo | last post by:
I am developing a small website using ASP scripts to format data retrieved from an Access database. It will run on a Windows 2003 server supporting FrontPage extensions 2002 hosted by the company...
ASP / Active Server Pages
15
JS and security.
by: osfwofujro | last post by:
According to a financial website I tried to access without JavaScript: "the site uses JS for security reasons." How would using JS improve security? Thanks.
Javascript
116
Security - more complex than I thought
by: Mike MacSween | last post by:
S**t for brains strikes again! Why did I do that? When I met the clients and at some point they vaguely asked whether eventually would it be possible to have some people who could read the data...
Microsoft Access / VBA
6
MSDE - security issues while on cable modem?
by: jmev7 | last post by:
I have heard of security issues with IIS while on a T1 line or on a cable modem, etc. I learned of a "break in" at a state office, and it was traced to an "open door" while using IIS. Due to that...
Microsoft Access / VBA
5
* * * C# Application and Database Security Model * * *
by: isideveloper | last post by:
I'm building a new C# web application that will provide my company some administrative operations that were previously only completed by tweaking the data in the database. 1. Encrypted password...
C# / C Sharp
3
security, passwords, and DPAPI
by: michael sorens | last post by:
In the interests of increasing security, I came upon the DPAPI security library available from the GotDotNet user samples repository. What I want to do is create an applications that accesses a...
C# / C Sharp
1
security question(s)
by: nancy | last post by:
I am new to PHP but have done other programming can someone please hold my hand and slowly talk me through some simple security issues? I have seen in PHP documents that there are 'strip...
PHP
19
Choosing a host based on their PHP "security" measures
by: hansBKK | last post by:
Upfront disclaimer - I am a relative newbie, just starting out learning about PHP, mostly by researching, installing and playing with different scripts. I am looking for a host that will provide...
PHP
2
Adding security question/answer check to ASP.NET *ChangePassword* control
by: Ken Fine | last post by:
I want to add the security question and answer security feature to the ChangePassword control. I am aware that this functionality is built into the PasswordRecovery tool. I have implemented the...
ASP.NET
0
Easy Steps to Fix "Canon Printer Won't Connect to WiFi Network"
by: taylorcarr | last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
General
0
Basic Javascript concepts
by: aa123db | last post by:
Variable and constants Use var or let for variables and const fror constants. Var foo ='bar'; Let foo ='bar';const baz ='bar'; Functions function $name$ ($parameters$) { } ...
Javascript
0
Batch import of multiple excel files into the database
by: ryjfgjl | last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
Data Management
0
Merging data from multiple Excel files
by: ryjfgjl | last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
Data Management
0
Migrating Website to Cloud - Emmanuel Katto
by: emmanuelkatto | last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel
General
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
General
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Online Marketing

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!