LOOKING FOR CASPOL.EXE

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

After a decade of experience with VB versions, I recently installed VS.net
2005 professional. I ran into security roadblocks when I moved a small test
app off my C: drive and onto a network file server.

Searching through support.microsoft.com gives lots of complicated
explanations and suggestions - none of which proved to be much help yet.

I am now wanting to try using CASPOL.EXE, but it is not to be found on my
computer. Apparently, installing VS.net pro doesn't produce this file. I
have installed the SDK for Framework 2.0, but CASPOL.EXE is still missing.

I've seen some 'two word' solutions offerred - 'rerun dotnetfx.exe' - but
those fail me because I don't have dotnetfx.exe either.

Can anybody help? Is this difficulty part of Microsoft's security plan?
The concepts of Framework's security setup seem very powerful to me, but why
should it be so hard to even begin implementing them? What am I failing to
see? I've been at searching MSDN for hours now.

Thank you for the time and attention.
 
Going from VB to .NET is much more than just an upgrade. As you are
beginning to find out, .NET is a completely different development platform
than VB 6.

One of the integrated security features of .NET has to do with running a
..NET "assembly" from a network location and that is the problem you are
experiencing. CAPSOL is obsolete as far as .NET is concerned and this is
why you can't find it.

There is no quick fix here. You must learn about what .NET is all about
before any one answer makes sense.

Here is one place to start:
http://www.cgisecurity.com/development/dot-net.shtml
 
Thanks Scott.

The website reference you gave seems to have a broken link for "Security in
the Microsoft Net Framework". Thanks for trying anyway.

Seems odd that there are so many recent references in MSDN discussion groups
about using the obsolete tool. Thank you for pointing out my oversight.
We've all seen that happen before, and I should have thought of the "now
obsolete" possibility earlier.

I wished Microsoft would have made their change of CASPOL support more
clear. You would think I'd run into this before while viewing various
searches and viewings of MSDN articles that touch upon the Control Panel
plug-in for Framework 2 security configuration. I think I'll work my way
down that approach.

So, once again, thanks Scott.

Mike
 
Scott M. said:
Going from VB to .NET is much more than just an upgrade. As you are
beginning to find out, .NET is a completely different development platform
than VB 6.

One of the integrated security features of .NET has to do with running a
.NET "assembly" from a network location and that is the problem you are
experiencing. CAPSOL is obsolete as far as .NET is concerned and this is
why you can't find it.


Obsolete? Since which version?

It is included in all .NET framework (1.0, 1.1 and 2.0), default
installation is "C:\Windows\Microsoft.NET\Framework\[Version]\caspol.exe"
 
Try http://msdn2.microsoft.com/en-us/library/03kwzyfc(VS.80).aspx and around
to see how securtiy works in .NET 2.0

Basically .NET code have different permissions depending for example on
where it comes from (it allows for example to run an EXE file that the user
saved on his computer but to block the same EXE file that would run directly
from the internet or a network drive etc...)

You'll find in the control panel a configuration tool that allows to
maintain the security rules the .NET framework will apply to .NET
applications...
 
[cut]
Obsolete? Since which version?

Not obsolete but I remeber also to have seen something about this. If I
remember the CASPOL tool is now part of the SDK and is no more provided in
the base framework installation...

[cut]

-- Patrice
 
I checked this and this is apparently the other way round :

- I thought they left the MMC snapin but it looks like it was removed in
redist
- I thought they removed caspol but it looks like they left it in redist

Seen here :
http://blogs.msdn.com/shawnfa/archive/2006/02/08/527663.aspx

--
Patrice

Patrice said:
[cut]
Obsolete? Since which version?

Not obsolete but I remeber also to have seen something about this. If I
remember the CASPOL tool is now part of the SDK and is no more provided in
the base framework installation...

[cut]

-- Patrice
 
CASPOL.exe is still part of .NET redist (1.0, 1.1 and 2.0) and will be
effective in 3.0, 3.0, because they are add-on on 2.0 (what a mess!).

the MMC is just GUI tool to use CASPOL.exe, which no longer included in 2.0
redist, and only in 2.0 SDK. Apparently MS thinks developers is less smart
than users: developers need GUI tool to do something, while users can handle
complicated command line tool (CASPOL.exe) very well. Pity developers, in
MS's eyes.


Patrice said:
I checked this and this is apparently the other way round :

- I thought they left the MMC snapin but it looks like it was removed in
redist
- I thought they removed caspol but it looks like they left it in redist

Seen here :
http://blogs.msdn.com/shawnfa/archive/2006/02/08/527663.aspx

--
Patrice

Patrice said:
[cut]
Obsolete? Since which version?

Not obsolete but I remeber also to have seen something about this. If I
remember the CASPOL tool is now part of the SDK and is no more provided
in the base framework installation...

[cut]

-- Patrice
 
Back
Top