F
Fred Exley
I wrote a nice little app that relies entirely on the EL, as an example of a
better way to do data access. Works fine locally, but when I uploaded it to
my web, it bombed when I added any EL dll's to the /bin directory, with a
Permissions error. I contacted my ISP tech support and here's what they
said:
"...we will not be able to correct this until MS makes EL compatible with
Medium trust, I am sure that you would rather have your websites secure than
any other ASP.NET user able to access them. If we don't run in a restricted
mode with asp.net 2.0 it can access anything on the server. The tradeoff
for security in this case is the overriding factor. I looked for any
information on exactly which settings needed to be changed for EL, and did
not find anything regarding it, but I found one mention saying enterprise
services can not run in medium as it is unmanaged code."
Is this correct, that using EL makes your app less secure? And if so, how
can it possibly be the method Microsoft recommends? thanks -curious Fred
better way to do data access. Works fine locally, but when I uploaded it to
my web, it bombed when I added any EL dll's to the /bin directory, with a
Permissions error. I contacted my ISP tech support and here's what they
said:
"...we will not be able to correct this until MS makes EL compatible with
Medium trust, I am sure that you would rather have your websites secure than
any other ASP.NET user able to access them. If we don't run in a restricted
mode with asp.net 2.0 it can access anything on the server. The tradeoff
for security in this case is the overriding factor. I looked for any
information on exactly which settings needed to be changed for EL, and did
not find anything regarding it, but I found one mention saying enterprise
services can not run in medium as it is unmanaged code."
Is this correct, that using EL makes your app less secure? And if so, how
can it possibly be the method Microsoft recommends? thanks -curious Fred