dll安全 [英] dll security

问题描述

我有一个用ASP.NET设计的网站


DreamweaverCtrls.dll

FreeTextBox.dll

WebXelMail.dll


现在，对于安全而言我的主机告诉我，禁止在网站空间放置.dll

文件。

所以，现在他们删除了所有的dll文件并阻止了我的bin文件夹。

结果：我的网站完全关闭了...


我做了一些搜索，我有另一个主机说

关注其支持部分：

"您无法安装自己的ASP组件DLL'。但是，每个网络服务器都可以使用一些ASP

组件，例如上传

组件，电子邮件组件等。

请注意，您可以不受限制地使用.NET DLL（对于ASP.NET，

不用于ASP），它们只需与您的.NET一起上传

webapplication。


所以我的结论是asp dll'比.NET dll更不安全。但是

为什么？我是对的吗？

有没有人对此有任何解释，这样我就可以说服我的主持人

允许那些.NET dll'并让我的网站重新上线？


非常感谢您的回复，

Nic。

I have a website designed in ASP.NET
In my BIN-folder I have several .NET dll-files:

DreamweaverCtrls.dll
FreeTextBox.dll
WebXelMail.dll

Now, for "security" reason my hoster told me it is prohibited to put .dll
files on the webspace.
So, right now they deleted all the dll files and blocked my bin folder.
Result: my site is completely down...

I did some searching on this and I have another hoster that says the
following on its support section:
"You cannot install your own ASP component DLL''s. However, a number of ASP
components are available for use on each webserver, such as an upload
component, an e-mail component etc.
Please note that you can use .NET DLL''s without restriction (for ASP.NET,
not for ASP), they simply can be uploaded together with your .NET
webapplication."

So my conclusion is that asp dll''s are more unsecure than .NET dll''s. But
why? And am I right?
Has anyone an explanation for this, so that I can convince my hoster to
allow those .NET dll''s and get my site back online ?

Thanks a lot for your replies,
Nic.

推荐答案

似乎asp dll'被称为unmanaged dll的

和.NET dll被称为托管dll的


但是有什么不同......？

为什么托管dll更安全......？

" nicholas" <亩******** @ hotmail.com>在留言中写道

新闻：％2 **************** @ TK2MSFTNGP10.phx.gbl ...

It seems like asp dll''s are called "unmanaged dll''s"
and .NET dll are called "managed dll''s"

But what''s the difference...?
And why are managed dll more secure...?
"nicholas" <mu********@hotmail.com> wrote in message
news:%2****************@TK2MSFTNGP10.phx.gbl...

我有在ASP.NET中设计的网站
在我的BIN文件夹中，我有几个.NET DLL文件：

DreamweaverCtrls.dll
FreeTextBox.dll
WebXelMail.dll

现在，对于安全而言我的主机告诉我，禁止在网站空间放置.dll
文件的原因。所以，现在他们删除了所有的dll文件并阻止了我的bin文件夹。
结果：我的网站是完全失望了...

我做了一些搜索，我有另一个主持人在其支持部分说
跟随：
你无法安装自己的ASP组件DLL'的。但是，每个Web服务器上都可以使用许多ASP组件，例如上传组件，电子邮件组件等。
请注意，您可以使用.NET DLL'没有限制（对于ASP.NET，而不是ASP），它们只需与您的.NET
Web应用程序一起上传。

所以我的结论是asp dll'比.NET dll更不安全。但是为什么呢？我是对的吗？

有没有人对此有任何解释，这样我就可以说服我的主持人
允许那些.NET dll'并让我的网站重新上线？

非常感谢您的回复，
Nic。

I have a website designed in ASP.NET
In my BIN-folder I have several .NET dll-files:

DreamweaverCtrls.dll
FreeTextBox.dll
WebXelMail.dll

Now, for "security" reason my hoster told me it is prohibited to put .dll
files on the webspace.
So, right now they deleted all the dll files and blocked my bin folder.
Result: my site is completely down...

I did some searching on this and I have another hoster that says the
following on its support section:
"You cannot install your own ASP component DLL''s. However, a number of ASP
components are available for use on each webserver, such as an upload
component, an e-mail component etc.
Please note that you can use .NET DLL''s without restriction (for ASP.NET,
not for ASP), they simply can be uploaded together with your .NET
webapplication."

So my conclusion is that asp dll''s are more unsecure than .NET dll''s. But
why? And am I right?
Has anyone an explanation for this, so that I can convince my hoster to
allow those .NET dll''s and get my site back online ?

Thanks a lot for your replies,
Nic.

看起来像asp dll'是名为unmanaged dll的

和.NET dll被称为托管dll的


但是有什么区别...？

为什么托管dll更安全......？

" nicholas" <亩******** @ hotmail.com>在留言中写道

新闻：％2 **************** @ TK2MSFTNGP10.phx.gbl ...

It seems like asp dll''s are called "unmanaged dll''s"
and .NET dll are called "managed dll''s"

But what''s the difference...?
And why are managed dll more secure...?
"nicholas" <mu********@hotmail.com> wrote in message
news:%2****************@TK2MSFTNGP10.phx.gbl...

我有在ASP.NET中设计的网站
在我的BIN文件夹中，我有几个.NET DLL文件：

DreamweaverCtrls.dll
FreeTextBox.dll
WebXelMail.dll

现在，对于安全而言我的主机告诉我，禁止在网站空间放置.dll
文件的原因。所以，现在他们删除了所有的dll文件并阻止了我的bin文件夹。
结果：我的网站是完全失望了...

我做了一些搜索，我有另一个主持人在其支持部分说
跟随：
你无法安装自己的ASP组件DLL'的。但是，每个Web服务器上都可以使用许多ASP组件，例如上传组件，电子邮件组件等。
请注意，您可以使用.NET DLL'没有限制（对于ASP.NET，而不是ASP），它们只需与您的.NET
Web应用程序一起上传。

所以我的结论是asp dll'比.NET dll更不安全。但是为什么呢？我是对的吗？

有没有人对此有任何解释，这样我就可以说服我的主持人
允许那些.NET dll'并让我的网站重新上线？

非常感谢您的回复，
Nic。

I have a website designed in ASP.NET
In my BIN-folder I have several .NET dll-files:

DreamweaverCtrls.dll
FreeTextBox.dll
WebXelMail.dll

Now, for "security" reason my hoster told me it is prohibited to put .dll
files on the webspace.
So, right now they deleted all the dll files and blocked my bin folder.
Result: my site is completely down...

I did some searching on this and I have another hoster that says the
following on its support section:
"You cannot install your own ASP component DLL''s. However, a number of ASP
components are available for use on each webserver, such as an upload
component, an e-mail component etc.
Please note that you can use .NET DLL''s without restriction (for ASP.NET,
not for ASP), they simply can be uploaded together with your .NET
webapplication."

So my conclusion is that asp dll''s are more unsecure than .NET dll''s. But
why? And am I right?
Has anyone an explanation for this, so that I can convince my hoster to
allow those .NET dll''s and get my site back online ?

Thanks a lot for your replies,
Nic.

Nicholas，

ASP DLL是COM组件，这意味着它们必须使用

regsrv32进行注册（将它们放入注册表中，并在系统范围内提供可用的

）。仅此一点可能是主持人不想让你使用COM DLL的原因。

我想不出是什么原因你的主人不会让你拥有ASPNET应用程序。所有他们不得不做的就是为你的网站设置一个用户，限制用户

权限，并在该用户下运行应用程序。没什么大不了的。

老实说，我会切换主机。我和Terrasite在一起，我很满意他们的

服务。你可以去eBay并获得

Nicholas,

ASP DLLs are COM Components, which mean they must be registered using
regsrv32 (which puts them in the registry, and makes the avaiable
system-wide). This alone could be a reason a host wouldn''t want to let you
use COM DLLs.

I can''t think of a reason why your host won''t let you have ASPNET Apps. All
they would have to do is set up a user for your website, limit that users
permission, and run applications under that user. No big deal at all.
Honestly, I''d switch hosts. I''m with Terrasite, and am very happy with their
service. You can go to eBay and get a good package for

这篇关于dll安全的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！