Solved

Activex unsafe warning - COM C# component

Posted on 2002-04-15
12
937 Views
Last Modified: 2013-11-25
I have a simple C# object(class) that I reference in a <OBJECT clsid="...> tag of an HTML page. I've putted this object into the GAC with gacutil and registered it as COM object with the regasm utility program. The <object> references the clsid in the registry.

Is there an easy way of bypassing the Activex warning in Internet Explorer whithout modifying the security level in the browser?

In an old COM-ATL object, I was using the IObjectSafetyImpl<CMyCtrl, INTERFACESAFE_FOR_UNTRUSTED_CALLER|INTERFACESAFE_FOR_UNTRUSTED_DATA> derivation to avoid this type of message. Is there a way of doing the same thing in C#?

My component will be used in an intranet solution only whithout needs to be visible in the client application.

Is that the better way I use to make a component in Dot Net for referencing in the browser? What are the other solutions?
0
Comment
Question by:mhebert
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
  • 2
  • +3
12 Comments
 
LVL 22

Expert Comment

by:CJ_S
ID: 6944019
Sure there is a way. I just forgot how it was implemented :-(
0
 
LVL 54

Expert Comment

by:nico5038
ID: 7508184

No comment has been added lately, so it's time to clean up this TA.
I will leave a recommendation in the Cleanup topic area that this question is:
 - To be deleted and points refunded
Please leave any comments here within the
next seven days.

PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER !

Nic;o)
0
 
LVL 22

Expert Comment

by:CJ_S
ID: 7508405
mhebert, is this still an issue?

nico5038,
I can help this person if he still needs this. Can we keep this one open unless mhebert does not reply?
0
What Is Transaction Monitoring and who needs it?

Synthetic Transaction Monitoring that you need for the day to day, which ensures your business website keeps running optimally, and that there is no downtime to impact your customer experience.

 
LVL 54

Expert Comment

by:nico5038
ID: 7508418
No problem with me, a mod will ignore my proposal because of your comment!

Nic;o)
0
 
LVL 1

Author Comment

by:mhebert
ID: 7520803
It's still an issue... ;-)
0
 
LVL 22

Expert Comment

by:CJ_S
ID: 7522176
mhebert,
Where is the object registered? At the server or at the client? At the server you should use the http protocol:

classid="http:MyControl.dll#FULLY.QUALIFIED.NAME"

Place the file and the .dll in a virtual directory. Or place the .dll in the gac like you did. The virtual directory should only have script permissions. No other setting!!!

CJ
0
 
LVL 1

Author Comment

by:mhebert
ID: 7525151
The object is registered on the client. It acts like an activex.
0
 
LVL 22

Accepted Solution

by:
CJ_S earned 100 total points
ID: 7525213
I was hoping it was not the case. For client side .Net components you can do two things.

1) Change the client ActiveX settings
2) Sign the ActiveX control or object.

Signing ActiveX can be done by a company like VeriSign. They can mark your component to be safe for initialization and scripting. But even then, if the client does not allow components marked safe for initialization or scripting it just won't run.

CJ
0
 
LVL 1

Expert Comment

by:Computer101
ID: 7653311
Listening

Computer101
E-E Admin
0
 
LVL 7

Expert Comment

by:peterchen092700
ID: 7998638
So folks, what to do?

No comment has been added lately.
To cleanup this TA, I will recommend to moderators that this question is:

*** Answered by: CJ_S ***

Please leave any comments here within the next seven days, or finalize the question if you own it
 
PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!
 
peterchen
EE Volunteer
0
 
LVL 1

Expert Comment

by:Computer101
ID: 8030117
A request for deletion has been made.  If no response or you feel this is in error, comment.  If no objection, I will delete in three days.

Computer101
E-E Admin
0
 

Expert Comment

by:Chmod
ID: 8376685
No response from mhebert to CJ_Ss comment on 12/03/2002 05:44AM PST or to Computer101 in http://www.experts-exchange.com/Community_Support/Q_20531246.html. Hence closed as recommended by peterchen

Chmod
Community Support Moderator @Experts Exchange

0

Featured Post

[Webinar] How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article you will learn how to create a free basic website on Bitbucket, a git service provider. Polymer creates dynamic HTML components, which allow more flexibility than static HTML. This tutorial uses Ubuntu Linux but can also be done on W…
Today, the web development industry is booming, and many people consider it to be their vocation. The question you may be asking yourself is – how do I become a web developer?
The viewer will learn how to use the return statement in functions in C++. The video will also teach the user how to pass data to a function and have the function return data back for further processing.
Introduction to Processes

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question