因此,像职责分离这样的标准安全措施得不到实施,因为没办法只提供给用户那些仅够他们展开工作的权限。
Thus, standard security measures, such as duty sepa-ration, can't be implemented because it's impossible to provide users with only those privileges they strictly require to carry out their work.
每个组件仅应该得到完成它本身工作所需的权限,不多不少。
Each component should be given only the authority it needs to do its own job and no more.
你必须确信你的ASP.NET工作进程拥有读取、执行和写入的权限。
You must make sure that your ASP.NET worker process has permissions to read, execute, and write to it.
应用推荐