> Maybe I'm missing something; but don't all strong-named > assemblies have > full-trust?
Nope. A strongly named assembly loaded into an app could have been pulled from off-host somewhere via an explicit CODEBASE hint, or implicitly from off-host as part of a no touch deployment, or from someone calling Assembly.Load and passing in file:// or http:// url that points somewhere off-host. It's also possible for the developer of a strongly named assembly to use a RequestRefuse attribute to voluntarily limit the perms they're granted. Similarly, it's possible for a machine/domain/user admin to configure CAS policy so that an exclusive code group is used to reduce the set of permissions a given assembly/ies are granted. Etc, etc. -Mike Bear Canyon Consulting LLC http://www.bearcanyon.com http://www.pluralsight.com/mike =================================== This list is hosted by DevelopMentorĀ® http://www.develop.com View archives and manage your subscription(s) at http://discuss.develop.com
