Best evidence to offer a sandboxed appdomain for a C# evaluator.

Posted by scope-creep on Stack Overflow See other posts from Stack Overflow or by scope-creep
Published on 2010-05-10T21:55:06Z Indexed on 2010/05/10 22:14 UTC
Read the original article Hit count: 264

Filed under:

security

I have a c# evaluator which uses the (I think) the .Net 4 new simplified sandboxed appdomain model to host the c# assembly, with remoting doing the rest. The call to create the appdomain is

        Evidence ev = new Evidence();
        ev.AddHostEvidence(new Zone(SecurityZone.Trusted));
        PermissionSet pset = SecurityManager.GetStandardSandbox(ev);

        AppDomainSetup ads = new AppDomainSetup();
        ads.ApplicationBase = "C:\\Sandbox";

        // Create the sandboxed domain.
        AppDomain sandbox = AppDomain.CreateDomain(
           "Sandboxed Domain",
           ev,
           ads,
           pset,
           null);

The c# eval is embedded in a server app, but I don't want give the sandbox to much control unless it bo bo's the caller. What i'm looking for is regarding some clarification as to what to provide as Evidence from the caller. I'm looking for advice and guidance.

Any help would be appreciated.

Related posts about appdomain

Load Assembly in New AppDomain without loading it in Parent AppDomain

as seen on Stack Overflow - Search for 'Stack Overflow'
I am attempting to load a dll into a console app and then unload it and delete the file completely. The problem I am having is that the act of loading the dll in its own AppDomain creates a reference in the Parent AppDomain thus not allowing me to destroy the dll file unless I totally shut down the… >>> More
Hosting the Razor Engine for Templating in Non-Web Applications

as seen on West-Wind - Search for 'West-Wind'
Microsoft’s new Razor HTML Rendering Engine that is currently shipping with ASP.NET MVC previews can be used outside of ASP.NET. Razor is an alternative view engine that can be used instead of the ASP.NET Page engine that currently works with ASP.NET WebForms and MVC. It provides a simpler and more… >>> More
.NET Security Part 2

as seen on Simple Talk - Search for 'Simple Talk'
So, how do you create partial-trust appdomains? Where do you come across them? There are two main situations in which your assembly runs as partially-trusted using the Microsoft .NET stack: Creating a CLR assembly in SQL Server with anything other than the UNSAFE permission set. The permissions… >>> More
AppDomain Creation In .Net

as seen on Stack Overflow - Search for 'Stack Overflow'
Is There a way we can clone Current Application Domain & Its Assembly in to new created domain to execute same peace of code in multiple domain having same dependencies as current domain have. >>> More
AppDomain dependencies across directories

as seen on Stack Overflow - Search for 'Stack Overflow'
I am creating a plugin system and I am creating one AppDomain per plugin. Each plugin has its own directory with its main assemblies and references. The main assemblies will be loaded by my plugin loader, in addition to my interface assemblies (so the plugin can interact with the application). Creating… >>> More

Developer IT

Best evidence to offer a sandboxed appdomain for a C# evaluator. - Developer IT

Best evidence to offer a sandboxed appdomain for a C# evaluator.

c#4.0

appdomain

security

Related posts about c#4.0

What C# 4.0 language features can be used while targeting .NET 2.0?

Can I delete libc-bin?

Related posts about appdomain

Load Assembly in New AppDomain without loading it in Parent AppDomain

Hosting the Razor Engine for Templating in Non-Web Applications

.NET Security Part 2

AppDomain Creation In .Net

AppDomain dependencies across directories

Categories cloud