Re: asp.NET dll-component: server security hole ?? (managed component)
From: nicholas (murmurait1_at_hotmail.com)
Date: 10/04/04
- Next message: JustMe: "Re: <customErrors mode="Off" />"
- Previous message: vaidas gudas: "How to write Regular Expression"
- In reply to: Hans Kesting: "Re: asp.NET dll-component: server security hole ?? (managed component)"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 4 Oct 2004 13:44:38 +0200
Thanks a lot, both of you !
It is a commercial product, so normally it should be OK.
THX
"Hans Kesting" <news.2.hansdk@spamgourmet.com> wrote in message
news:OVBHswfqEHA.3424@TK2MSFTNGP11.phx.gbl...
> nicholas wrote:
> > I use asp.NET dll components on my website.
> > These are managed components, not like asp components that are
> > un-managed.
> >
> > Those who sell these components say that having an asp.Net component
> > in the /bin forlder of your website on a windows2003 server can cause
> > no security holes at all.
> >
> > My hoster says the opposite...
> >
> > So, what is the trought and if they are 100% safe, why is it so?
> >
> > THX a lot
>
> A guess:
> Having some dll sitting quetly in the bin folder is no risk.
> Using that dll from your page could have risks, if that dll is a "trojan"
> and does more than is advertised. How much do you trust
> that "3rd party" that sold that dll? (If it's a commercial product,
> usually you should be safe)
>
> Hans Kesting
>
>
>
- Next message: JustMe: "Re: <customErrors mode="Off" />"
- Previous message: vaidas gudas: "How to write Regular Expression"
- In reply to: Hans Kesting: "Re: asp.NET dll-component: server security hole ?? (managed component)"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
