100165421.htm
来自「C#高级编程(第三版),顶死你们。。 。up」· HTM 代码 · 共 183 行 · 第 1/3 页
HTM
183 行
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><title>
14.1.2 代码访问权限和权限集
</title></head>
<body>
<div class="area">
<div class="col1">
<div class="lineBlue">
</div>
<!-- title -->
<div class="arcTitle">
<h1>
<a href="../16">
C#高级编程(第3版)【全文连载】
</a>
</h1>
<div style="text-align: center; font-size: 15px">
<a href="100165421.htm">
14.1.2 代码访问权限和权限集
</a>
</div>
<div style="text-align: center; font-size: 15px">
<a class="url" href="../../default.htm">http://book.csdn.net/</a>
2006-10-13 14:41:00
</div>
<div style="margin: 0px auto; width: 700px; border: solid 1px #0b5f98;">
<div style="float: left; width: 16px; background-color: #0b5f98; color: White; padding: 1px;">
图书导读
</div>
<div style="float: right; width: 670px; text-align: left; line-height: 16pt; padding-left: 2px">
<!--导读-->
<h1 id="divCurrentNode" style="color: #b83507; width: 100%; text-align: left; font-size: 12px; padding-left: 2px">当前章节:<a href='100165421.htm'><font color='red'>14.1.2 代码访问权限和权限集</font></a></h1>
<div id="divRelateNode" style="padding-left: 2px">
<div style='float:left;width:49%'>·<a href='100165372.htm'>10.3 小结</a></div><div style='float:right;width:49%'>·<a href='100165419.htm'>14.1 代码访问的安全性</a></div><div style='float:left;width:49%'>·<a href='100165420.htm'>14.1.1 代码组</a></div><div style='float:right;width:49%'>·<a href='100165422.htm'>14.1.3 策略的级别:Machine、User和Enterprise</a></div><div style='float:left;width:49%'>·<a href='100165423.htm'>14.2 对Framework中安全性的支持</a></div><div style='float:right;width:49%'>·<a href='100165424.htm'>14.2.1 要求权限</a></div></div>
</div>
</div>
</div>
<!-- main -->
<div id="main">
<div id="text"> <link href="css.css" rel="stylesheet" type="text/css" /><h3 style="MARGIN-TOP: 8.15pt; MARGIN-LEFT: 0cm; MARGIN-RIGHT: 0cm; FTEL: 8.15pt"><a ftel="_Toc507815601"><span lang="EN-US">14.1.2 </span></a><span style="FONT-FAMILY: 黑体">代码访问权限和权限集</span></h3>
<p class="MsoNormal"><span style="FONT-FAMILY: 宋体">想像自己正在一个大公司中管理办公机器网络的安全性策略。在这种情况下,</span><span lang="EN-US">CLR</span><span style="FONT-FAMILY: 宋体">在执行代码之前收集代码的证据是非常有用的;同样,一旦</span><span lang="EN-US">CLR</span><span style="FONT-FAMILY: 宋体">知道了代码来自何处,管理员就应当有机会严格控制代码在所管理的数百台机器上的行为。这个问题需要使用权限来解决。</span></p>
<p class="MsoNormal"><span style="FONT-FAMILY: 宋体">一旦程序集与代码组相匹配,</span><span lang="EN-US">CLR</span><span style="FONT-FAMILY: 宋体">就会根据安全性策略赋予程序集一些权限。在</span><span lang="EN-US">Windows</span><span style="FONT-FAMILY: 宋体">中管理权限时,通常不是把权限应用到用户身上,而是把权限应用于组。程序集也是如此,也就是说,把权限应用于代码组,而不是各个程序集,这就简化了</span><span lang="EN-US">.NET</span><span style="FONT-FAMILY: 宋体">中安全性策略的管理。</span></p>
<p class="MsoNormal"><span style="COLOR: black; FONT-FAMILY: 宋体">安全性策略指定代码组中的程序集允许执行什么动作。下面列出了</span><span lang="EN-US" style="COLOR: black">CLR</span><span style="COLOR: black; FONT-FAMILY: 宋体">提供的代码访问权限。从中可以看出,使用这些权限,可以很好地控制允许代码做什么和不允许做什么:</span></p>
<p class="1" style="MARGIN-LEFT: 36.95pt; FTEL: -15.5pt"><span lang="EN-US" style="LETTER-SPACING: -0.2pt">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US" style="LETTER-SPACING: -0.2pt">DirectoryServicesPermission</span><span style="FONT-FAMILY: 宋体; LETTER-SPACING: -0.2pt">:通过</span><span lang="EN-US" style="LETTER-SPACING: -0.2pt">System.DirectoryServices</span><span style="FONT-FAMILY: 宋体; LETTER-SPACING: -0.2pt">类访问</span><span lang="EN-US" style="LETTER-SPACING: -0.2pt">Active Directory</span><span style="FONT-FAMILY: 宋体; LETTER-SPACING: -0.2pt">的能力</span></p>
<p class="1" style="MARGIN-LEFT: 37.55pt; FTEL: -16.1pt"><span lang="EN-US">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US">DnsPermission</span><span style="FONT-FAMILY: 宋体">:使用</span><span lang="EN-US">TCP/IP</span><span style="FONT-FAMILY: 宋体">域名系统</span><span lang="EN-US">(DNS)</span><span style="FONT-FAMILY: 宋体">的能力</span></p>
<p class="1" style="MARGIN-LEFT: 37.55pt; FTEL: -16.1pt"><span lang="EN-US">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US">EnvironmentPermission</span><span style="FONT-FAMILY: 宋体">:读写环境变量的能力</span></p>
<p class="1" style="MARGIN-LEFT: 37.55pt; FTEL: -16.1pt"><span lang="EN-US">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US">EventLogPermission</span><span style="FONT-FAMILY: 宋体">:读写事件日志的能力</span></p>
<p class="1" style="MARGIN-LEFT: 38.15pt; FTEL: -16.7pt"><span lang="EN-US">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US" style="LETTER-SPACING: 0.2pt">FileDialogPermission</span><span style="FONT-FAMILY: 宋体; LETTER-SPACING: 0.2pt">:访问文件的能力。这里的文件是指用户在</span><span lang="EN-US" style="LETTER-SPACING: 0.2pt">Open</span><span style="FONT-FAMILY: 宋体; LETTER-SPACING: 0.2pt">对话框中选择的文件。</span><span style="FONT-FAMILY: 宋体; LETTER-SPACING: 0.1pt">通</span><span style="FONT-FAMILY: 宋体">常用于没有赋予</span><span lang="EN-US">FileIOPermission</span><span style="FONT-FAMILY: 宋体">权限,不能对文件进行有限的访问时。</span></p>
<p class="1" style="MARGIN-LEFT: 38.15pt; FTEL: -16.7pt"><span lang="EN-US">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US" style="LETTER-SPACING: 0.2pt">FileIOPermission</span><span style="FONT-FAMILY: 宋体; LETTER-SPACING: 0.2pt">:处理文件的能力</span><span lang="EN-US" style="LETTER-SPACING: 0.2pt">(</span><span style="FONT-FAMILY: 宋体; LETTER-SPACING: 0.2pt">其中包括读文件、写文件、添加文件的内容,创建、更改</span><span style="FONT-FAMILY: 宋体; LETTER-SPACING: 0.1pt">和访问</span><span style="FONT-FAMILY: 宋体">文件夹</span><span lang="EN-US">)</span></p>
<p class="1" style="MARGIN-LEFT: 37.85pt; FTEL: -16.4pt"><span lang="EN-US">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US" style="LETTER-SPACING: 0.1pt">IsolatedStorageFilePermission</span><span style="FONT-FAMILY: 宋体; LETTER-SPACING: 0.1pt">:访问私有虚拟文件系统的能力</span></p>
<p class="1" style="MARGIN-LEFT: 37.55pt; FTEL: -16.1pt"><span lang="EN-US">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US">IsolatedStoragePermission</span><span style="FONT-FAMILY: 宋体">:访问孤立存储器的能力,存储器与各个用户相关,并具有代码身份的特征,例如代码的</span><span lang="EN-US">Web</span><span style="FONT-FAMILY: 宋体">站点、签名或发布者</span></p>
<p class="1" style="MARGIN-LEFT: 37.55pt; FTEL: -16.1pt"><span lang="EN-US">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US">MessageQueuePermission</span><span style="FONT-FAMILY: 宋体">:通过</span><span lang="EN-US">Microsoft Message Queue</span><span style="FONT-FAMILY: 宋体">使用消息队列的能力</span></p>
<p class="1" style="MARGIN-LEFT: 37.55pt; FTEL: -16.1pt"><span lang="EN-US">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US">OleDbPermission</span><span style="FONT-FAMILY: 宋体">:使用</span><span lang="EN-US">OLE DB</span><span style="FONT-FAMILY: 宋体">访问数据库的能力</span></p>
<p class="1" style="MARGIN-LEFT: 37.55pt; FTEL: -16.1pt"><span lang="EN-US">●<span style="FONT: 7pt 'Times New Roman'"> </span></span><span lang="EN-US">PerformanceCounterPermission</span><span style="FONT-FAMILY: 宋体">:利用性能计数器的能力</span></p>
⌨️ 快捷键说明
复制代码Ctrl + C
搜索代码Ctrl + F
全屏模式F11
增大字号Ctrl + =
减小字号Ctrl + -
显示快捷键?