ASP.NET Security

>I think I'm confusing a desktop-based .NET program, with ASP.NET.

Maybe, though there really aren't a whole lot of differences, other than the
asp.net pages obvoiusly need html (.aspx) pages to render the UI...though,
again, I believe in the 2.0 framework, you can also complie the aspx pages
into the same DLL if you want.

-Darrel

> can't afford to have all that VBSCRIPT code, your intellectual property,
> left unprotected.

Sure you can. ;o)

> What I can't figure out yet is what is so inheriently open about ASP.NET
> that makes it vulnerable to reverse engineering?

Nothing. It's just like any other web based languages.

Actually, it's less vulnerable in that you can compile it into DLLs if you
want.

That said, I have yet to see a reason to not provide source code when
someone purchases a web-based app. In fact, a lot of our contracts stipulate
that any custom software we purchase has to give us the source code.

-Darrel

I think I'm confusing a desktop-based .NET program, with ASP.NET.

Bob


"Bob Sorrells" <rsorrellsYOUKNOW@WHAT2DOmindspring.com> wrote in message
news:elsiu5$8f3$1@forums.macromedia.com...
> When I Googled "asp.net obfuscation", there's a site called
> http://www.devdirect.com/ALL/OBFUSCATIORS_PCAT_2014.aspx
>
> One of a dozen products is called ASPLightning, "You've just spent months
> developing the killer ASP application. You're just days away from
> unleashing it on the world. But now you have a dilema. While ASP scripting
> made development a breeze, you can't afford to have all that VBSCRIPT
> code, your intellectual property, left unprotected. ASPLightningTM is the
> solution"
>
> What I can't figure out yet is what is so inheriently open about ASP.NET
> that makes it vulnerable to reverse engineering?
>
> Bob
>
>
>
> "darrel" <notreal@nowhere.com> wrote in message
> news:els7ni$p26$1@forums.macromedia.com...
>>> Is there a way to make ASP.NET as secure from source-code piracy as
>>> classic ASP?
>>
>> Source code piracy?
>>
>> ASP.net code is just like ASP code in that it's all processed server
>> side...so none of it ever makes it to the browser.
>>
>> I imagine asp.net obfuscation is a useless of idea as html obfuscation.
>> It doesnt' stop 'piracy' and only annoys paying customers.
>>
>> That said, you can compile all yoru code into a dll if you want to
>> distribute your asp.net application in that matter. It can be decompiled
>> somewhat, but does make it a bit easier to hand-off files.
>>
>> -Darrel
>>
>
>

When I Googled "asp.net obfuscation", there's a site called
http://www.devdirect.com/ALL/OBFUSCATIORS_PCAT_2014.aspx

One of a dozen products is called ASPLightning, "You've just spent months
developing the killer ASP application. You're just days away from unleashing
it on the world. But now you have a dilema. While ASP scripting made
development a breeze, you can't afford to have all that VBSCRIPT code, your
intellectual property, left unprotected. ASPLightningTM is the solution"

What I can't figure out yet is what is so inheriently open about ASP.NET
that makes it vulnerable to reverse engineering?

Bob



"darrel" <notreal@nowhere.com> wrote in message
news:els7ni$p26$1@forums.macromedia.com...
>> Is there a way to make ASP.NET as secure from source-code piracy as
>> classic ASP?
>
> Source code piracy?
>
> ASP.net code is just like ASP code in that it's all processed server
> side...so none of it ever makes it to the browser.
>
> I imagine asp.net obfuscation is a useless of idea as html obfuscation. It
> doesnt' stop 'piracy' and only annoys paying customers.
>
> That said, you can compile all yoru code into a dll if you want to
> distribute your asp.net application in that matter. It can be decompiled
> somewhat, but does make it a bit easier to hand-off files.
>
> -Darrel
>

> Is there a way to make ASP.NET as secure from source-code piracy as
> classic ASP?

Source code piracy?

ASP.net code is just like ASP code in that it's all processed server
side...so none of it ever makes it to the browser.

I imagine asp.net obfuscation is a useless of idea as html obfuscation. It
doesnt' stop 'piracy' and only annoys paying customers.

That said, you can compile all yoru code into a dll if you want to
distribute your asp.net application in that matter. It can be decompiled
somewhat, but does make it a bit easier to hand-off files.

-Darrel

The same is true of ASP.NET. You put your code in VB files. Grab yourself a
copy of Visual Web Developer.

--
Jules
http://www.charon.co.uk/charoncart
Charon Cart 3
Shopping Cart Extension for Dreamweaver MX/MX 2004