开发者

Publishing All Project Files in Visual Studio

开发者 https://www.devze.com 2022-12-11 13:02 出处:网络
Is there a security risk associated with using the option that copies \"All project files\" when publishing a web application into a production environment? I normally use the option \"Only files need

Is there a security risk associated with using the option that copies "All project files" when publishing a web application into a production environment? I normally use the option "Only files needed to run this application" which does not copy the source code to the server.

I am the only person with access to the production server. There is also no issue with cluttering the production server as there isn't much on it. In fac开发者_如何转开发t I don't mind having all the source files be kept on the server together with the binaries.

Is there any security issue with this?


If no one can get access to the production server then there is no security risk with this option. However this is a pretty big if! I can’t see any real benefit from using the All project files or All files in the source project folder options – these don’t even allow you to update the web application in place on the production server which might be useful in some situations. I would stick to the Only files needed to run this application option just to be save.

0

精彩评论

暂无评论...
验证码 换一张
取 消