Difference between revisions of ".Net Research Links"

From OWASP
Jump to: navigation, search
 
Line 10: Line 10:
 
* [http://msdn2.microsoft.com/en-us/library/ms173253.aspx How to Migrate to clrpure] and [http://msdn2.microsoft.com/en-us/library/85344whh.aspx Pure and Verifiable Code]  This last one contains this note: ''“There is one coding scenario that will pass the compiler but that will result in an unverifiable assembly: calling a virtual function through an object instance using the scope resolution operator. For example: MyObj -> A::VirtualFunction();.”''
 
* [http://msdn2.microsoft.com/en-us/library/ms173253.aspx How to Migrate to clrpure] and [http://msdn2.microsoft.com/en-us/library/85344whh.aspx Pure and Verifiable Code]  This last one contains this note: ''“There is one coding scenario that will pass the compiler but that will result in an unverifiable assembly: calling a virtual function through an object instance using the scope resolution operator. For example: MyObj -> A::VirtualFunction();.”''
 
* David Notario's [http://blogs.msdn.com/davidnotario/archive/2006/01/13/512436.aspx Gotchas with Reverse Pinvoke (unmanaged to managed code callbacks)]
 
* David Notario's [http://blogs.msdn.com/davidnotario/archive/2006/01/13/512436.aspx Gotchas with Reverse Pinvoke (unmanaged to managed code callbacks)]
 +
 +
 +
== Click Once ==
 +
* [http://msdn.microsoft.com/msdnmag/issues/05/11/CodeAccessSecurity/default.aspx Find
 +
Out What's New with Code Access Security in the .NET Framework 2.0]
 +
and [http://msdn.microsoft.com/msdnmag/issues/05/11/CodeAccessSecurity/default.aspx?side=true" its
 +
side notes] (MSDN Magazine, November 2005)
 +
 +
</li><li><p><a href="http://www.devnewsgroups.net/group/microsoft.public.dotnet.framework.windowsforms/topic35308.aspx">ClickOnce
 +
and or No Touch Deployment example sites on Developer Newsgroups</a></p>
 +
</li></ul>
 +
<ul><li><p><a href="http://www.devx.com/dotnet/Article/30177/0/page/1">Take
 +
the Pain Out of Deployments with ClickOnce</a></p>
 +
</li><li><p><a href="http://msdn.microsoft.com/msdnmag/issues/04/05/ClickOnce/">ClickOnce
 +
Deploy and Update Your Smart Client Projects Using a Central Server
 +
</a>(MSDN Magazine, May 2004) says:</p>
 +
<ul><li><p>“<i>To allow the application to
 +
obtain the permissions it needs without administrator intervention
 +
on the client machine, ClickOnce can prompt the user at
 +
installation time to ask them to grant the application the elevated
 +
permissions. Once permission is granted, the user will not be
 +
prompted again on subsequent runs. Although this capability
 +
circumvents some of the security protections provided by the CLR by
 +
allowing a user to elevate security permissions for that
 +
application, you can prevent the user from being allowed to do this
 +
through security policy in an enterprise environment.”&nbsp;</i><span></span></p>
 +
</li><li><p><span>dasBlonde
 +
series of posts on </span><a href="http://www.dasblonde.net/CategoryView,category,ClickOnce.aspx"><span>ClickOnce</span></a></p>
 +
 +
</li></ul>
 +
</li><li><p><a href="http://blogs.msdn.com/shawnfa/archive/2005/08/31/458641.aspx"><span>When
 +
the Opposite of Transparent isn't Opaque</span></a></p>
 +
</li><li><p>Series of articles on <a href="http://www.artima.com/articles/index.jsp?topic=security">Artima
 +
about Java JVM security</a></p>
 +
</li><li><p>.Net Security Blog: <a href="http://blogs.msdn.com/shawnfa/archive/2006/01/18/514407.aspx">Isolated
 +
Storage and ClickOnce</a>  and  <a href="http://blogs.msdn.com/shawnfa/archive/2006/01/20/514411.aspx">Detecting
 +
that You're Running in a ClickOnce Application</a></p>
 +
</li></ul>

Revision as of 14:20, 18 July 2006

This page is a collection of links (most from my Dinis' owasp.net blog) which releate to .Net


Clr stuff


Click Once

Out What's New with Code Access Security in the .NET Framework 2.0] and [http://msdn.microsoft.com/msdnmag/issues/05/11/CodeAccessSecurity/default.aspx?side=true" its side notes] (MSDN Magazine, November 2005)

</li>
  • <a href="http://www.devnewsgroups.net/group/microsoft.public.dotnet.framework.windowsforms/topic35308.aspx">ClickOnce and or No Touch Deployment example sites on Developer Newsgroups</a>

  • </ul>