Business Objects separate from UI Question - hackers?? - Level Extreme

Plateforme Level Extreme

Abonnement

Profil corporatif

Produits & Services

Support

Légal

English

Business Objects separate from UI Question - hackers??

Message

De

31/08/2004 10:29:28

Bonnie DeWitt
Geneva Systems Group
Ellensburg, Washington, États-Unis

À

31/08/2004 09:46:41

Shawn Dorion
GeoSektor.com/Applications4u.com
Cardinal, Ontario, Canada

Information générale

Forum:

ASP.NET

Catégorie:

The Mere Mortals .NET Framework

Titre:

Re: Business Objects separate from UI Question - hackers??

Divers

Thread ID:

00937993

Message ID:

00938017

Vues:

16

Shawn,

>If so what i think i might do is in the business object is check to see if the user is logged in, if not then kick out of the business object.

We don't use MM, but we do the same kind of check in the biz object, so I think it's a good idea. =)

~~Bonnie

>How do you prevent a user(hacker) from utilizing the businessobject.dll to get access to the database?
>
>In the MM items, it has a getdatset method, by passing all the right keys, the user can get access to the database, and the data.
>Worst yet they can reference my dll and then use my own code against me in there app.(insert,deletes,updates)
>
>is mmApp available as a in the webframework as it is in the winforms framework?
>
>If so what i think i might do is in the business object is check to see if the user is logged in, if not then kick out of the business object.
>
>Thoughts?

Bonnie Berent DeWitt
NET/C# MVP since 2003

http://geek-goddess-bonnie.blogspot.com

Click here to load this message in the networking platform