VB: Get Compiled DLL's Calling Application Info; COM Security?
Oct 15, 2010
Through COM, one can potentially gain absolute control over a target system. For example: using javascript's ActiveXObject object in IE, one can create certain objects which were designed to have direct access or interaction with system properties and files.One would think common sense dictates users disable ActiveX features in IE immediately after installing the browser to ensure their system is protected while surfing the net, or at least paying close attention to which websites they permit. But, I doubt many average PC users know how or why to do this, or just get tired of mirco-managing it over time. I think any PC user or admin my COM class caters to would greatly appreciate not having to deal with that. Thankfully it looks like IE versions come packaged with ActiveX disabled by default nowadays.
I've built a very versatile COM class library in VB. I didn't intend for it to be callable from any website, but that feature is just part of the COM platform. I'd like to prevent the library from being called from IE unless the website is on a white-listed domain to proactively protect the user (and ultimately their entire intranet) from harm from malicious websites. What would be the best method in VB.Net to tell which application called my DLL, to be able to tell if it was called from any command or process originating from IE? And, what domain called my dll? System.Environment.GetCommandLineArgs()(0) gets me the calling application path. With this info, I can compare it to a black/white-list of applications.
View 2 Replies
ADVERTISEMENT
Jun 27, 2010
does anyone knwos what is the point of persist security info? i have always leave it at default (i'm not sure what value it is) but when i pass the application to my friend he seem not to be able to connect to the db. (btw the application calls
View 2 Replies
Jan 13, 2012
I am trying trite code that will copy information from an infopath document to a word document that is being used as a template containing only a header and footer. The only reason for the code is becausthe footer (not optional) is too long to be handled by Infopath (which has a 255 character limit) and word can hold the full footer. Following the guidance on
Public Sub CTRL1_5_Clicked(ByVal sender As Object, ByVal e As ClickedEventArgs)
Dim appWord As Word.Application
Dim wrdDoc As Word.Document
[code].....
View 2 Replies
Dec 20, 2011
When I try to call a [Java] web service from .NET, I am getting what appears to be a security credentials issue. CWWSS5509E: A security token whose type is [http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#UsernameToken] is required.Is it even picking up the credentials that I am trying to pass? At this point, I just want to make contact with the web service and get access. In my example, ServiceReference1 is a generated Web proxy class.
Private Sub Button2_Click(ByVal sender As System.Object, ByVal e As System.EventArgs) Handles Button2.Click
Dim myLocateProfileBySourceSystemId As New ServiceReference1.locateProfileBySourceSystemId
[code].....
View 1 Replies
Sep 6, 2011
under my project I have the following
However when I use this code.
lblABOUT3.Text = "Version : "
lblABOUT3.Text += My.Application.Info.Version.Major.ToString()
lblABOUT3.Text += "." & My.Application.Info.Version.Minor.ToString
[Code]....
View 8 Replies
Feb 21, 2011
I've a requirement to have PreCompiled webpages and Non-PreCompiled webpages under same application. For example below is my structure:
/Bin
/Test1 (PreCompiled)
/Test2 (NonPreCompiled)
/Test3 (PreCompiled)
I would like these to have their separate "Bin" folders too if possible at all (I tried using "Probing" but I guess that's not allowed for web apps and defaults to "Bin" folder). If not that then definitely some ability for these to work together under one app/virtual directory because I'm not allowed to create another at any cost :(
View 3 Replies
May 16, 2010
I have made a simple vb application and have used vb 2010 to create it, which all of you would know, uses .NET Framework 4.0. I wanted to use this application at work, however, I found out that my work uses .NET framework 3.5 sp1.
So my question is, is there a way to compile something in VB 2010 that will work on .NET 3.5 sp1? If so, how?
View 2 Replies
Nov 2, 2011
I have a .NET application that is shared to around 30 different computers, (mix of 32-bit and 64-bit machines).When compiled, the application is set to target 'Any CPU'.It runs fine on all machines except one that is Windows 7 64 bit.The error message is:
[Code]...
View 1 Replies
Nov 30, 2009
How can i make it so when my application has been compiled, a user can press a button, and then save a file within the exe its self (thus, a resource). Or text in a text document (not a setting, because when the exe changes places on a user computer, it will loose its settings. The main need for this is so that the exe can change locations / computers, but still retain the origional data (or text) stored in it.
View 2 Replies
Jun 30, 2010
I'm making a program from witch one could run an application with different credentials.I can compile the program successfully, but when I press the button to run the program I get the following error: Unhandled exception has occurred in your application. If you click Continue, the application will ignore this error and attempt to continue. If you click Quit, the application will close immediately.The system cannot find the specified file.The code behind the button is as follows:
Dim myProcess As System.Diagnostics.Process = New System.Diagnostics.Process()
myProcess.StartInfo.FileName = "c:
un.bat /user:kreathyr c:getlogin.exe"
myProcess.Start()
Getlogin.exe does nothing but show the logged in username and run.bat utilizes the runas command.
View 2 Replies
Dec 17, 2010
I want to use PKI public and private encryption for authentication to allow for a more streamlined and secure application access control system. Any help in the generation of certificate and authentication will be useful. One more question, can i use System.Security.Cryptography.X509Certificates class for the same?
View 1 Replies
Jan 29, 2011
I am developing and application in vb.net winxp+ (windows xp upwards). The application has to receive backup data from clients software located at different pc over the Internet. but am concerned about security of this application on the Internet. what would be the best way to implement security in vb.net 2008 to make sure that the data is not sniffed or interfere with?
am thinking of encrypting the data before sending, saving it that way until it need to be viewed before decrypting. what type of encryption would you suggest? Is there any other way you would suggest this data be sent?
View 2 Replies
Feb 8, 2012
im finish my application and im finish ex�cutable the my application. and my question he's, if posible somebady want open my executable the my application with vb.2008.is that posible
View 1 Replies
Jan 23, 2010
What kind of security has to be built into the application if it is connecting to a remote database server, mail server, on the company network/over a WAN?
View 9 Replies
Apr 9, 2011
Let's say 10 desktop shortcuts, all with different names/icons, point to and can start the same exe application from the same directory. Is there any means for the application to know the distinct name of the shortcut that was doubled_clicked. Also is there any means for a running application to know if it was started by command line, by a double_click on the exe, by a double_click on a shortcut that points to it, or by another process' call?
View 4 Replies
Aug 18, 2009
I wish to implement some role based security in my application. Has anyone got any links with some usefull info on this subject.
View 2 Replies
Jul 23, 2009
I have built a MVC website on IIS6. I used the built-in ASP.NET Security without Membership, just the way it was implemented in the template solution. It is easy to secure a contoller or action, but now I need to expose the user management to an admin logged into the site. I understand that the builtin ASP controls for doing this are not "best practice" and are a dog to get working. So what is the best practice for offering user management through a ASP.NET MVC application?
I considered using the Entity Framework and wireing it up to the myriad of stored procs. but that seems awkward. I see options for AccountMembershipService and FormsAuthenticationService. That is what the existing project account controller uses. But, I am not fimilliar with either.I can't help but think that this should have already been there from the project template. This is a fundamental part of any website and you were given 15%, why not the rest?
View 5 Replies
Jan 12, 2010
i created the following ActionFilterAttribute to check if a user is granted access to a page. I also created two custom Exceptions to handle different scenarios: NotLoggedInException and InsufficientPrivilegeException.
[Code]...
Where do I catch the exceptions to for instance redirect users if not authorized?Should I perhaps use the SiteMap authorization somewhere else instead of using the ActionFilterAttribute and throwing Exceptions..?
note: as you can see I'm using a custom class for BLL.Page. This is a ORM page which has Role based security stored in the database. SiteMap is also populated based on this data
View 1 Replies
Mar 5, 2012
We are in the process of upgrading to WIN7 support and finding issues with the existing impersonant security model we previously used. So i am looking for suggestions before we hit the code.Application ABC.exe is running on a PC with restricted permissions
View 15 Replies
Sep 27, 2011
When I try to run my DLL in Autocad, I got the message below.Application attempted to perform an operation not allowed by the security policy. To grant this application the required permission, contact your.I know there are many threads on this error, but Im not sure about one thing.Can I resolved this on our FilesServer or I have to do something on each computers that will use the DLL ?
View 3 Replies
Jun 10, 2011
Counting days independent of system calander ?
View 1 Replies
Jun 10, 2011
I want to add a feature to my trial version of the application. After first activation, I want to make it limited to 90 days. But I am concerned about user's changing the date of system hence deceiving my application. Is there any possibility to make it fool proof in a way that even if user takes the calender back, application expires after 90 days of first activation? First activation date has been saved in the database.
View 2 Replies
Apr 28, 2009
Out of 70 users of my application 2 are getting the following message when they to run the application... That assembly does not allow partially trusted callers. The reason for the error is that by default .net applications run from a network location have limited permissions. You need to use caspol.exe to add the network folder where your application is being run from to the Trusted Zone. If you do a search on these forums you will find plenty examples of how to do this. It is fairly simple. It will have to be done on every machine that will be running the application and a simple cmd file can be made to do this. The only difference is that I've asked our service desk to install the application to the local C drive which I believe they did.
View 10 Replies
Sep 5, 2011
I need to implement, Controls Based Security in a Windows Forms Application using VB.NET. I tried google but did not get anything much to work with.
I would like if someone, could suggest some books or tutorials.
View 1 Replies
Jun 25, 2012
I have created several DLL (.NET) libraries that are used in several projects. In these DLL libraries I want to know/retrieve which assembly (EXE) calls/uses the library, so if possible I want to know info like assembly name (EXE), strong name, version number, etc.
NB: Examples may be in C# or VB. I use both languages.
View 2 Replies
Jun 10, 2010
This error occurs when I want to add my app to the startup keys
My.Computer.Registry.LocalMachine.OpenSubKey("SOFTWAREMicrosoftWindowsCurrentVersionRun", True).SetValue(Application.ProductName, app)
[code].....
View 1 Replies
Jun 1, 2010
I am writing a small visual basic application to install clean up tools quickly on any machines that we need to work on here at my workplace. I am using 4-5 cleanup programs that I have packaged into MSI's and have batch scripts that I am calling in my visual basic application to run them as silent installs. However, because I am doing the silent installs, windows always pops up with the "open file - security warning" and I have to click run for each individual program. I am wondering how to get around this from my end within the application. I know it can be disabled in windows but I am not wanting to have to go through a process on every machine that I run this program on. I would like to find a fix on the back end in my script.
View 2 Replies
Mar 17, 2010
I have a Visual Basic.Net Windows Forms application to which I am considering adding the WebBrowser control. I'm assuming that the PC's on which this application will ultimately be deployed/installed will have the latest Windows (XP, Vista, or 7) updates, a firewall, and an Internet security suite installed/running.
With this deployment environment in mind, does the WebBrowser control make my application or the deployment PC vulnerable to any significant security risks? Are there any programming issues that should be addressed to eliminate potential security risks when using the WebBrowser control?
View 1 Replies
Oct 14, 2010
i am using visual studio 2005 on win 7 with office 2007. i have developed win application. i am using microsoft activex spreadsheet component in my program. so it automatically creates reference to AxInterop.OWC11.dll When i run program in debug mode (open program and click RUN in toolbar it works) but if i run directly .exe (go to bin elease doubleclick .exe) it give error at loading point of that component. It says "Attempted to read or write protected memory. This is often an indication that other memory has been corrupted." An unhandled exception occurrs.
[Code]...
View 3 Replies
Nov 24, 2010
I have a 3rd party program that has an internal messaging system built into it. The messages are stored in SQL. What I am doing is writing a program that will query this database on a specific interval and if it finds a message for a specific user it will take the text of that message and send it to the users email address(ie. gmail, yahoo, etc.). The issue is when the program quesries I only want it to grab the message that have not been sent. Each message in the system gets an ID assigned to it so what I'm trying is everytime it finds a message to send to the user it will write the ID of that message to a text file so that next time the query comes around it will compare the ID in the text file to the most recent ID in the database and if it is newer message it will get it and send it. I'm not trying to display any data from the query, just take the messsage text and send it.
Public Sub LookForMessage()
'Bind database tables to datagrid view
cmd = New SqlCommand("SELECT * FROM dbo.tblMessageTo", con)
cmd2 = New SqlCommand("SELECT * FROM dbo.tblMessages", con)
[code]....
View 2 Replies