Re: Sandboxed appdomain opening winforms

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: David Levine (noSpamdlevineNNTP2_at_wi.rr.com)
Date: 12/02/04 

Date: Thu, 2 Dec 2004 05:04:48 -0600

"Kirk Jackson" <kirk@community.nospam> wrote in message
news:OJPeuFF2EHA.3408@tk2msftngp13.phx.gbl...
>> Unfortunately loading *UI* code into a separate AppDomain is not a
>> supported scenario in Windows Forms
>
> Thanks Richard, I appreciate your help.
>
> Do you (or anyone else) know the answers to these questions?
>
> - Can Winform code be *reliably* run in an AppDomain at full trust? It
> seems to work for me - can I rely on it?

What do you mean by "realiably"? Full trust means that is has all possible
permissions.

>
> - Is there any other way to reduce the permissions of code that contains
> UI code, so that it can't access files / network etc?
>

Yes, there ways of doing this. For example, you can package this code in a
separate assembly, and then when the assembly is loaded you can supply
evidence that will make it run at a reduced security level. I suggest
reading one of the books on Code Access Security - there are several.

> - Will it be possible in future versions of the framework?
>
> It'd be great if someone can point me to docs or a web page outlining
> this - I'd like to have something to show to others about why my current
> approach won't work.

Ask your questions on the security newsgroup @
microsoft.public.dotnet.security

Relevant Pages

  • RE: Do all three permission classes (Identity Permission, Code Access Permission and Role Based Perm
    ... I've actually read a number of technical documents from Microsoft on .NET security - but I do appreciate the additional references. ... In addition, only Code Access Permissions and Identity Permissions should be thought of as belonging to Code Access Security, correct? ... Also in one of the Microsoft documents I read***, it differentiated between Evidence-based Security and Code Access Security like this: ...
    (microsoft.public.dotnet.security)
  • RE: What server hardening are you doing these days?
    ... permissions on their data, and Microsoft encourages ISVs to minimize ... I've been able to discuss ACLs and other security issues in Windows with ... Control or DAC (which is what you're referring to by the "stupid ...
    (Focus-Microsoft)
  • Re: get rid of security center?
    ... I have come up with a solution that does not disable Security Center, ... By changing the Permissions of that key, ... settings from being changed again. ... the firewall alert settings in Security Center get ...
    (microsoft.public.windowsxp.help_and_support)
  • Re: Password Protect IExplore
    ... You can protect the files and folders you store on your computer to make ... To set, view, change, or remove special permissions for files and folders ... clear the Inherit from parent the permission entries that apply ... To configure security so that the subfolders and files will not ...
    (microsoft.public.internet.explorer.ieak)
  • Re: Removing the Internet Security in SP2
    ... I have come up with a solution that does not disable Security Center, ... By changing the Permissions of that key, ... settings from being changed again. ... the firewall alert settings in Security Center get ...
    (microsoft.public.windowsxp.security_admin)