Improve company productivity with a Business Account.Sign Up

x
?
Solved

DLL security

Posted on 2004-09-07
7
Medium Priority
?
182 Views
Last Modified: 2010-04-11
Hi

We have a web application. How can I porevent the usage of activeX dll components used in the application by others after it is hosted?

Com component is written in VB.

Thanks in advance

Riyasjef
0
Comment
Question by:riyasjef
7 Comments
 
LVL 9

Author Comment

by:riyasjef
ID: 11995346

Also the server-side scripting in asp
0
 

Expert Comment

by:mrpersonality98
ID: 11995718
I can provide you a hardware based solution for it. Where are you based?
0
 
LVL 9

Author Comment

by:riyasjef
ID: 11995870

India.
A hardware based solusion?
I mean something in the code which prevents the access.

0
Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

 
LVL 2

Expert Comment

by:fitcher
ID: 11998047
Your application is on a windows IIS server? (presumed),  the user that IIS uses to execute .dlls is IWAM_machinename.  If this is the only user permitted to execute the dll then no one (other than the VB process) should be able to use the dll.
Not sure this is the answer you are looking for.  Not real clear on the question.
0
 
LVL 9

Author Comment

by:riyasjef
ID: 11999161
Hi fitcher

I did'nt mean that.  Even if the dll is copied and registered in another system? It should not work..It should be specific to our application only..

For example, we can check whether the current url contain, some domain name and if it is ok then proceeds ....

Is it a good idea to protect copying dll? or some other ideas?

Riyasjef
0
 
LVL 51

Accepted Solution

by:
ahoffmann earned 1600 total points
ID: 11999592
>  Even if the dll is copied and registered in another system? It should not work..

short answer: impossible that it not runs on other system
long answer: you can obfuscate your code and usage so that other trying to decompile or use it have some more walls to climb, but in the end its possible to use it somehow
0
 
LVL 7

Assisted Solution

by:jimwasson
jimwasson earned 400 total points
ID: 12000183
You might wish to take a look at activex control licensing:

http://msdn.microsoft.com/workshop/components/activex/licensing.asp
0

Featured Post

The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

The onset of year 2018 has been a usual business for IT teams still struggling to find their way out in terms of strengthening their cloud security.
Cloud computing is a model of provisioning IT services. By combining many servers into one large pool and providing virtual machines from that resource pool, it provides IT services that let customers acquire resources at any time and get rid of the…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

579 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question