.Net secure

[transtar]

I read articles and hear from other forums that .Net technology even compiled to .dll for behind code is not secure for web applications. They can be easily hacked into and accessed and modified. I know that it's possible with other technologies, php, cold fusion, etc. but is .net the most unsecure?

Thanks,

[mendhak]

Show us a few articles that you've read.

[transtar]

Hi, Sorry had to finish a project. But here's an article about a software that i run and was able to decompile my asp.net code.

http://searchvb.techtarget.com/vsnet...293475,00.html

http://aspnet.4guysfromrolla.com/articles/080404-1.aspx

I ran it and was able to see my functions with my .dll. Not unless I am doing something wrong.

Please let me know if there is another software to prevent it from being decompile.

Thanks,

[dj4uk]

To quote the first article you posted:

If the fact that it's trivial to decompile a .NET assembly scares the pants off you, you can always turn to an obfuscator. The best on the market, in my opinion, is Brent Rector's Demeanor (http://www.wiseowl.com). The fact that Lutz protects his decompiler from prying eyes with Demeanor is proof enough for me.

DJ

[nemaroller]

Well, a web-application in the normal sense does not allow a user to download its assemblies. The only time it becomes a problem is if your packaging a web-application and selling it to others to run on their servers - and you want to protect your intellectual property from your customers - which as mentioned, can be made difficult by use of a good obfuscator.

Otherwise, if your hosting the web app only on your server - your only real concern should be how protected your internet server (in most cases IIS for .net apps) is from hacking.