Hi, all! Trying to build a stand-alone vb.net app (from VS.Net 2k5) that
will let me just take the EXE from the dev box over to a client box and run
it, as-is, without "installing" it. I was under the assumption that this
was still possible, but I seem to get security errors on client boxes when I
just run the EXE on the client machine. Even after tweaking the ClickOnce
settings to specfically allow the type that's giving me the error, I still
get it. The only way to prevent the errors is to do a typical install (run
the setup.exe), which defeats the whole purpose in the first place.
What's the trick? Workstations are all Xp/Pro, latest patches (including
Framework 2.0), running inside a Win2k3 domain (users do NOT have
administrative privilege locally). Help!! :)
Jack 8 1500
Mr. JackBlack,
What is your application trying to do? What is reporting the security
errors or how are the errors being reported to you?
You may already know this, but... Some application behavior requires
administrative privileges to perform their activities. For example,
the logged in user may not have the correct permissions to modify the
registry; if your application is attempts to create a key it will fail
due to permissions. Are you running the application on the other boxes
using the same domain account?
Some application behavior requires administrative privledges
JackBlack wrote:
Hi, all! Trying to build a stand-alone vb.net app (from VS.Net 2k5) that
will let me just take the EXE from the dev box over to a client box and run
it, as-is, without "installing" it. I was under the assumption that this
was still possible, but I seem to get security errors on client boxes when I
just run the EXE on the client machine. Even after tweaking the ClickOnce
settings to specfically allow the type that's giving me the error, I still
get it. The only way to prevent the errors is to do a typical install (run
the setup.exe), which defeats the whole purpose in the first place.
What's the trick? Workstations are all Xp/Pro, latest patches (including
Framework 2.0), running inside a Win2k3 domain (users do NOT have
administrative privilege locally). Help!! :)
Jack
Thanks for responding!
No, the app is just about as basic as it gets! Display a RichTextBox with a
legal disclaimer, and a CommandButton to close the window. The app has to
run under the restricted privs of every domain account (it'll be called from
a domain login script and run from a network share that all users have Read
& Execute privs to). Took a whole 2 minutes to build, and now it's taking
hours to get the security ironed out! :-P
Any suggestions would be of help at this point, since the permissions
settings appear to be good.
Jack
"FishingScout" <fi**********@comcast.netwrote in message
news:11*********************@h48g2000cwc.googlegro ups.com...
>
Mr. JackBlack,
What is your application trying to do? What is reporting the security
errors or how are the errors being reported to you?
You may already know this, but... Some application behavior requires
administrative privileges to perform their activities. For example,
the logged in user may not have the correct permissions to modify the
registry; if your application is attempts to create a key it will fail
due to permissions. Are you running the application on the other boxes
using the same domain account?
Some application behavior requires administrative privledges
JackBlack wrote:
>Hi, all! Trying to build a stand-alone vb.net app (from VS.Net 2k5) that will let me just take the EXE from the dev box over to a client box and run it, as-is, without "installing" it. I was under the assumption that this was still possible, but I seem to get security errors on client boxes when I just run the EXE on the client machine. Even after tweaking the ClickOnce settings to specfically allow the type that's giving me the error, I still get it. The only way to prevent the errors is to do a typical install (run the setup.exe), which defeats the whole purpose in the first place.
What's the trick? Workstations are all Xp/Pro, latest patches (including Framework 2.0), running inside a Win2k3 domain (users do NOT have administrative privilege locally). Help!! :)
Jack
You still didn't share which exceptions you're getting...
Without that it's a bit difficult to help anymore!
Thanks,
Seth Rowe
JackBlack wrote:
Thanks for responding!
No, the app is just about as basic as it gets! Display a RichTextBox with a
legal disclaimer, and a CommandButton to close the window. The app has to
run under the restricted privs of every domain account (it'll be called from
a domain login script and run from a network share that all users have Read
& Execute privs to). Took a whole 2 minutes to build, and now it's taking
hours to get the security ironed out! :-P
Any suggestions would be of help at this point, since the permissions
settings appear to be good.
Jack
"FishingScout" <fi**********@comcast.netwrote in message
news:11*********************@h48g2000cwc.googlegro ups.com...
Mr. JackBlack,
What is your application trying to do? What is reporting the security
errors or how are the errors being reported to you?
You may already know this, but... Some application behavior requires
administrative privileges to perform their activities. For example,
the logged in user may not have the correct permissions to modify the
registry; if your application is attempts to create a key it will fail
due to permissions. Are you running the application on the other boxes
using the same domain account?
Some application behavior requires administrative privledges
JackBlack wrote:
Hi, all! Trying to build a stand-alone vb.net app (from VS.Net 2k5) that
will let me just take the EXE from the dev box over to a client box and
run
it, as-is, without "installing" it. I was under the assumption that this
was still possible, but I seem to get security errors on client boxes
when I
just run the EXE on the client machine. Even after tweaking the
ClickOnce
settings to specfically allow the type that's giving me the error, I
still
get it. The only way to prevent the errors is to do a typical install
(run
the setup.exe), which defeats the whole purpose in the first place.
What's the trick? Workstations are all Xp/Pro, latest patches (including
Framework 2.0), running inside a Win2k3 domain (users do NOT have
administrative privilege locally). Help!! :)
Jack
JackBlack wrote:
(it'll be called from a domain login script and run from a network share
that all users have Read
& Execute privs to).
That is the problem right there. Because the app is on a network
share, the .Net framework on the local machine is not allowing the code
to execute because it is not trusted. You need to use caspol.exe to
grant trust on the local machine to that application.
Here is the command we use:
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\casp ol -m -ag All_Code
-url file://server/folder/* FullTrust -n AppName
This grants full trust on the client machine to the application on the
network share.
Thanks for responding! I meant to include the exception in my last post,
but here it is:
Request for the permission of type
'System.Security.Permissions.UIPermission,mscorlib ,Version=2.0.0.0,
Culture=neutral,PublicKeyToken=b77a5c561934e089' failed.
This still occurs even after setting the permission to "Include" in the
project properties.
Thanks for any input!
Jack
"rowe_newsgroups" <ro********@yahoo.comwrote in message
news:11**********************@m73g2000cwd.googlegr oups.com...
You still didn't share which exceptions you're getting...
Without that it's a bit difficult to help anymore!
Thanks,
Seth Rowe
Chris, thanks for replying!
Well, a couple things: First, running caspol as you suggested below
(substituting the appropriate machine names and file paths, of course) had
no effect whatsoever. I still get a UIPermissions exception when the
program is executed by the average domain user. Additionally, when a user
with local Admin privileges and elevated domain privs executes the app now,
it starts up fine, but upon clicking the CommandButton that terminates the
program, I now get a SecurityPermission exception.
Second, if this command needs to be run at each workstation, then it kinda
defeats the purpose of having a stand-alone app, doesn't it? If I have to
touch each machine, I might as well just do a normal installation to the
local machine (setup.exe route), right?
Additionally, the caspol.exe app can only be run by an administrator, so
even that can't be scripted (requiring that I touch each machine). So we're
still at square one, no?
Having read a bit more, it seems that the "xcopy distribution" method isn't
really true. What I need to be able to do is take an executable, drop it on
a network device that the average network user has read/execute privs on,
and have it run from a login script, without having to touch any of the
machines. Is this do-able?
Much thanks again,
Jack
"Chris Dunaway" <du******@gmail.comwrote in message
news:11**********************@f16g2000cwb.googlegr oups.com...
JackBlack wrote:
>(it'll be called from a domain login script and run from a network share that all users have Read & Execute privs to).
That is the problem right there. Because the app is on a network
share, the .Net framework on the local machine is not allowing the code
to execute because it is not trusted. You need to use caspol.exe to
grant trust on the local machine to that application.
Here is the command we use:
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\casp ol -m -ag All_Code
-url file://server/folder/* FullTrust -n AppName
This grants full trust on the client machine to the application on the
network share.
The way I got around these security exceptions was to use the .net
configuration wizard to set the appropriate permissions and then create
a deployement package. Then our network admin created a logon script to
run the msi. Would that be a posibility?
Thanks,
Seth Rowe
JackBlack wrote:
Chris, thanks for replying!
Well, a couple things: First, running caspol as you suggested below
(substituting the appropriate machine names and file paths, of course) had
no effect whatsoever. I still get a UIPermissions exception when the
program is executed by the average domain user. Additionally, when a user
with local Admin privileges and elevated domain privs executes the app now,
it starts up fine, but upon clicking the CommandButton that terminates the
program, I now get a SecurityPermission exception.
Second, if this command needs to be run at each workstation, then it kinda
defeats the purpose of having a stand-alone app, doesn't it? If I have to
touch each machine, I might as well just do a normal installation to the
local machine (setup.exe route), right?
Additionally, the caspol.exe app can only be run by an administrator, so
even that can't be scripted (requiring that I touch each machine). So we're
still at square one, no?
Having read a bit more, it seems that the "xcopy distribution" method isn't
really true. What I need to be able to do is take an executable, drop it on
a network device that the average network user has read/execute privs on,
and have it run from a login script, without having to touch any of the
machines. Is this do-able?
Much thanks again,
Jack
"Chris Dunaway" <du******@gmail.comwrote in message
news:11**********************@f16g2000cwb.googlegr oups.com...
JackBlack wrote:
(it'll be called from a domain login script and run from a network share
that all users have Read
& Execute privs to).
That is the problem right there. Because the app is on a network
share, the .Net framework on the local machine is not allowing the code
to execute because it is not trusted. You need to use caspol.exe to
grant trust on the local machine to that application.
Here is the command we use:
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\casp ol -m -ag All_Code
-url file://server/folder/* FullTrust -n AppName
This grants full trust on the client machine to the application on the
network share.
JackBlack wrote:
Second, if this command needs to be run at each workstation, then it kinda
defeats the purpose of having a stand-alone app, doesn't it? If I have to
touch each machine, I might as well just do a normal installation to the
local machine (setup.exe route), right?
Yes, it must be run at each workstation. Becuase the workstation must
"trust" the application being run since it is not installed locally.
Have you tried the ClickOnce deployment? You can deploy to the server.
The user simply clicks on a url to install the app locally to their
machine to run it. When you update the app, you update it only on the
server. Any time the user executes the app, it automatically downloads
any updates.
Perhaps that would work for you. At least you won't need to touch
every workstation that way. This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: FilexBB |
last post by:
Currently I use jdom-b9 version to parase xml with the following xml
message
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
......
with the code like this
SAXBuilder builder = new...
|
by: Lonnie, SRC employee |
last post by:
*** post for FREE via your newsreader at post.newsfeed.com ***
I can figure out how to set the standalone attribute in the <? xml
version="1.0 ?> tag eg <?xml version="1.0" standalone="yes" ?>
...
|
by: Dan Williams |
last post by:
Hi people
I'm getting a little annoyed with the way the print function always adds a
space character between print statements unless there has been a new line.
The manual mentions that "In some...
|
by: Isaac Gouy |
last post by:
1) Running a standalone script with SpiderMonkey on Linux
js -f scriptfile.js scriptarg
How can I get the value of scriptarg from within the JavaScript
scriptfile?
2) Running a standalone...
|
by: tt |
last post by:
My mod_python 3.1.4 installation works when Apache 2.0.54 is run in
standalone mode (apache -k standalone) but refuses to operate when run
as a service (apache -k restart).
Logs yield the usual...
|
by: JohnR |
last post by:
Hi all. In my program I try to handle all obvious potential errors with
structured error handling (try-catch) block. What I would like to do is
have an 'overall' error handler that would...
|
by: sdb1031 |
last post by:
I'm trying to learn about Python and XML. I would like to be able to
add standalone="no" to my xml declaration when writing an xml file, but
I am unable to figure out how. So far, I have the...
|
by: VK |
last post by:
It is possibly more suitable to address this question to W3C mailing
list, but I'm trying here first.
Could anyone comment on <http://www.w3.org/TR/REC-xml/#sec-rmd>
The first statement says:...
|
by: tah |
last post by:
Hey,
Can someone please clarify, confirm, or set me straight on my
understanding of a standalone="yes" attribute in the xml version
element?
I assume it means that the xml document containing it...
|
by: Ted Lyngmo |
last post by:
Hi!
I'm new (but please do continue reading) to C++ in the VS environment
and wanted to create a standalone program (or preferably, a static
library, compatible with other Windows compilers)...
|
by: Charles Arthur |
last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
|
by: emmanuelkatto |
last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud.
Please let me know.
Thanks!
Emmanuel
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new...
| |