Making ASPNET a Member of Administrator Group??

16 Mar 2006 7:49 PM

Ben

I'm working on a C#.Net Web application involving a third party dll. Because
they use SoftLock in that dll, the Web app cannot access that dll at runtime,
and they told me to make "ASPNET" as a member of the Administrator Group.
That fixed the problem, but is that too risky? What might be the security
compromise as a result?

Thanks a lot for your professional advice.

Ben

16 Mar 2006 8:39 PM

Consultant

thats the worse thing you could do. did you try runningit with the trust
level set to full?

Show quoteHide quote

"Ben" <B**@discussions.microsoft.com> wrote in message
news:549DE7A0-4B99-4CCD-8A76-6109D4912AA3@microsoft.com...
> I'm working on a C#.Net Web application involving a third party dll.
> Because
> they use SoftLock in that dll, the Web app cannot access that dll at
> runtime,
> and they told me to make "ASPNET" as a member of the Administrator Group.
> That fixed the problem, but is that too risky? What might be the security
> compromise as a result?
>
> Thanks a lot for your professional advice.
>
> Ben

17 Mar 2006 2:33 PM

Ben

Could you please tell me how? Or give me a help link/url??

Thanks a lot.

Ben

Show quoteHide quote

"Consultant" wrote:

> thats the worse thing you could do. did you try runningit with the trust
> level set to full?
>
>
> "Ben" <B**@discussions.microsoft.com> wrote in message
> news:549DE7A0-4B99-4CCD-8A76-6109D4912AA3@microsoft.com...
> > I'm working on a C#.Net Web application involving a third party dll.
> > Because
> > they use SoftLock in that dll, the Web app cannot access that dll at
> > runtime,
> > and they told me to make "ASPNET" as a member of the Administrator Group.
> > That fixed the problem, but is that too risky? What might be the security
> > compromise as a result?
> >
> > Thanks a lot for your professional advice.
> >
> > Ben
>
>
>

17 Mar 2006 5:11 PM

Consultant

open your web.config and set the trust level to full. you may need to allow
override in the machine.config

Show quoteHide quote

"Ben" <B**@discussions.microsoft.com> wrote in message
news:87F58C1B-4BA0-4BA6-9E8E-FA354F3C393A@microsoft.com...
> Could you please tell me how? Or give me a help link/url??
>
> Thanks a lot.
>
> Ben
>
>
> "Consultant" wrote:
>
>> thats the worse thing you could do. did you try runningit with the trust
>> level set to full?
>>
>>
>> "Ben" <B**@discussions.microsoft.com> wrote in message
>> news:549DE7A0-4B99-4CCD-8A76-6109D4912AA3@microsoft.com...
>> > I'm working on a C#.Net Web application involving a third party dll.
>> > Because
>> > they use SoftLock in that dll, the Web app cannot access that dll at
>> > runtime,
>> > and they told me to make "ASPNET" as a member of the Administrator
>> > Group.
>> > That fixed the problem, but is that too risky? What might be the
>> > security
>> > compromise as a result?
>> >
>> > Thanks a lot for your professional advice.
>> >
>> > Ben
>>
>>
>>

18 Mar 2006 7:34 PM

Roger Abell [MVP]

Please provide feedback to the supplier letting then know their
suggest solution is entirely inadequate, outrageous, and of course,
unacceptible. They need to hear this so that they will adjust their
requirements in order to maintain sales.
If the component dll is using Softlock.Net then the provider is
blowing smoke in your face by saying the grant of admin to ASPNET
is the only way. They are just trying to take the easy way out, at
your expense/well-being.

Show quoteHide quote

"Ben" <B**@discussions.microsoft.com> wrote in message
news:549DE7A0-4B99-4CCD-8A76-6109D4912AA3@microsoft.com...
> I'm working on a C#.Net Web application involving a third party dll.
> Because
> they use SoftLock in that dll, the Web app cannot access that dll at
> runtime,
> and they told me to make "ASPNET" as a member of the Administrator Group.
> That fixed the problem, but is that too risky? What might be the security
> compromise as a result?
>
> Thanks a lot for your professional advice.
>
> Ben