RE: Tools
From: Steven Cheng[MSFT] (v-schang_at_online.microsoft.com)
Date: 03/12/04
- Next message: Saravana [MVP]: "Re: How do you append a QueryString to the DefaultRediret?"
- Previous message: Brandon Potter: "Re: Downloading file from aspx page -- change file name?"
- In reply to: Brad Markisohn: "Tools"
- Next in thread: Brad Markisohn: "Re: Tools"
- Reply: Brad Markisohn: "Re: Tools"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 12 Mar 2004 04:00:38 GMT
Thanks for Ken's informative information.
Hi Brad,
Thanks for posting here. Based on your description, here is my
understanding of your problem:
You'd like to make a original PC application(used to control some complex
hardware on the machine) as a remote accessable application so that some
remote client can control the server machine's hardware setting via the
application. And you wonder whether ASP.NET is the proper solution or any
other means, yes?
As for this question, I'd like to asked some further things:
1. Do you want to make it just intranet based or internet based?
2. Do you want to make the clientside simple enougth(simple client) just
need a browser or has rich client app?
First I think ASP.NET is certainly ok for your situation. However, what you
need to care about is the security issues you may meet with. The ASP.NET
application has high restricted on security permissions on machine. Also
its workerprocess
has very limited privileges. As for your situation, I think you may need to
use many unmanaged APIS or other custome APIs to control hardwares. So you
need to write some wrapper classes(managed code) for calling those
unmanaged or other restricted resources. Here are some references on
ASP.NET security and .net code access with restricted resources:
#ASP.NET Security
http://msdn.microsoft.com/library/en-us/secmod/html/secmod08.asp?frame=true
#Using Code Access Security with
http://msdn.microsoft.com/library/en-us/dnnetsec/html/THCMCh09.asp?frame=tru
e
#Use Code Access Security Policy to Constrain an Assembly
http://msdn.microsoft.com/library/en-us/dnnetsec/html/htcode_acc.asp?frame=t
rue
#Secure Coding Guidelines for the .NET Framework
http://msdn.microsoft.com/library/en-us/dnnetsec/html/seccodeguide.asp?frame
=true
As for the fileupload, I think you may have a look at Ken's suggestions.
In addtion, I think you may also consider the socket based application
since it can be implemented via a winform app and won't have the security
issues asp.net web app may mets. But it'll need a rich client app in such
c/s mode applications.
Any way, please have a check on the above things. Hope they are helpful.
Regards,
Steven Cheng
Microsoft Online Support
Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)
Get Preview at ASP.NET whidbey
http://msdn.microsoft.com/asp.net/whidbey/default.aspx
- Next message: Saravana [MVP]: "Re: How do you append a QueryString to the DefaultRediret?"
- Previous message: Brandon Potter: "Re: Downloading file from aspx page -- change file name?"
- In reply to: Brad Markisohn: "Tools"
- Next in thread: Brad Markisohn: "Re: Tools"
- Reply: Brad Markisohn: "Re: Tools"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
