Rank: Member
Joined: 6/29/2008(UTC)
Posts: 2
|
I'm getting the following error message after attempting to install for the first time. Any suggestions about how to fix this?
Thanks.
<H1>Server Error in '/' Application.
<HR width="100%" color=silver SIZE=1>
</H1>
<H2>Required permissions cannot be acquired. </H2>[color=#ffffcc>
[tr ][td ]<CODE>An]</b>location of the exception can be identified using the exception stack trace below.[/code] [/td][/tr]</TABLE>
[1]<B>Version Information:[/1] Microsoft .NET Framework Version:2.0.50727.1433; ASP.NET Version:2.0.50727.1433
|
|
|
|
|
|
Rank: Member
Joined: 6/26/2008(UTC)
Posts: 38
|
I have the same problem... Code:Error 5 Could not load file or assembly 'CyberSource, Version=1.0.4.0, Culture=neutral, PublicKeyToken=7091342136fdb0df'
or one of its dependencies. Failed to grant minimum permission requests. (Exception from HRESULT: 0x80131417)
Error 6 Unable to load referenced library 'C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET
Files\bvstore.infinetdev.com\eeb7f2e7\_shadow\2b8cbb30\2485369598\29939644\CybsSecurity.dll': An attempt was made to load a program with an incorrect format.
Error 7 Unable to load referenced library 'C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET
Files\bvstore.infinetdev.com\eeb7f2e7\_shadow\2b8cbb30\2485369598\29939644\CybsSecurity.dll': An attempt was made to load a program with an incorrect format.
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\bvstore.infinetdev.com\eeb7f2e7\_shadow\2b8cbb30\2485369598\29939644\CybsSecurity.dll
|
David Rodriguez
Infinet Development, Inc. |
|
|
|
|
|
Rank: Member
Joined: 11/5/2003(UTC)
Posts: 2,136
Was thanked: 1 time(s) in 1 post(s)
|
The BVC5 website needs to run in full trust. Ask you hosting company to assign your website full trust. |
|
|
|
|
|
|
Rank: Member
Joined: 6/26/2008(UTC)
Posts: 38
|
Thanks Andy, We are the hosting company, but it appears giving full trust to any one site would also be giving the keys to the kingdom away. Originally Posted by: "OWScott"  Giving some people full trust violates the trust of the whole server, unless you and everyone else on the server trust them. For example, you can set to full trust for your own admin site, but if you do it just because someone's site doesn't work in partial trust, that person now has access to get around the CAS security check which defeats the purpose of CAS. So, for CAS to work properly, it needs to apply to everyone, not just some people. ( source) Is there another way we can do this without affecting the security of every other client's website? |
David Rodriguez
Infinet Development, Inc. |
|
|
|
|
|
Rank: Member
Joined: 11/5/2003(UTC)
Posts: 2,136
Was thanked: 1 time(s) in 1 post(s)
|
When BVC5 first came out, I created a custom trust configuration for it, http://structured-solutions.net/BVC5MediumTrustI started with the standard medium trust configuration, then added the minimum additional trust that is required to load nsoftware.IBizPayWeb.dll and my shipping products at the time. You can make similar changes for CyberSource.dll. If you are not sure what to change, ask CyberSource...I don't think anyone in the BVC5 community has done it. |
|
|
|
|
|
|
Rank: Member
Joined: 6/29/2008(UTC)
Posts: 2
|
Thank you all for your assistance with this. This problem really limits our ability to choose hosting providers and personally I don't like the idea of exposing other co-hosted sites.
The medium trust configuration is interesting and my guess is it will probably work. Unfortunately, in looking at all my options, I just can't afford to waste any more time trying to get this demo up and running when I've got other competing products working without a hitch.
|
|
|
|
|
|
Rank: Member
Joined: 11/5/2003(UTC)
Posts: 2,136
Was thanked: 1 time(s) in 1 post(s)
|
Originally Posted by: "Mark Boyer"
Unfortunately, in looking at all my options, I just can't afford to waste any more time trying to get this demo up and running when I've got other competing products working without a hitch.
That's cool, but it makes me wonder how safe the competing products are. The CyberSource.dll is from CyberSource. Presumably every vendor that incorporates CyberSource uses the same DLL or a similar one. If the competing products load and use the CyberSource.dll without a hitch, then they are running in the equivalent of full trust. In that case, why not allow BVC5 to run in full trust? Alternatively, if the other products do not use CyberSource, and you don't need CyberSource in BVC5; then you can simply remove it (delete the DLL and remove any reference to it in TaskLoader). |
|
|
|
|
|
|
Rank: Member
Joined: 8/17/2006(UTC)
Posts: 681
|
D-ROD,
CAS helps your customer not you!
You should be running all your app-pools isolated at the OS level by running each website in in a separate app-pool and under a separate user-name.
This way the OS is the one protecting your customers against a potential attach on each other.
Using CAS to run partially trusted code does not help you with that. It only helps by minimizing what an app-domain can do it itself.
If you know that no two customers (or even two websites from the same customer) run under different security credentials (different users) then you are safe to give them full-trust.
There is nothing they can do with it outside of what the user running that app-pool will be able to do. And I expect that user to be extremly limited in what it can do.
BTW, Popular hosting packages like Plesk make this type of job very easy by making sure every website is a different user.
Regards,
Corneliu. |
|
|
|
|
|
|
Rank: Member
Joined: 6/26/2008(UTC)
Posts: 38
|
Corneliu, thank you. We're going to look into this (I'm a web programmer and need to grab our system admin). |
David Rodriguez
Infinet Development, Inc. |
|
|
|
|
|
Forum Jump
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.