StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
1556081
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
2
CommunityOwnedDate
CreationDate
2009-10-12T18:18:30.247
FavoriteCount
0
LastActivityDate
2009-10-12T18:18:30.247
LastEditDate
LastEditorUserId
0
OwnerUserId
126352
ParentId
1529997
PostTypeId
2
Score
4
ViewCount
0
LastEditorDisplayName
text
Body
I'm assuming your question is this: can you force IE to prompt the user to install a (previously unknown) certificate, in order to enable an otherwise signed and safe ActiveX control to be run on a page? (If this isn't your question, comment and I can revise.) Short answer: no. You'll need to shell out $$$ for code-signing cert from a trusted authority. (which is, AFAIK, different from a regular SSL cert) Long answer: From a security perspective, being signed with an unknown certificate is similar to being unsigned, because there's no trusted authority telling the client he can trust that code. And IE's default settings are not to allow unsigned ActiveX controls to be downloaded and used. If what you're trying to do were allowed, then a savvy attacker could simply create a cert, sign it, and thereby make it easier for users to run their attack code. There are certainly workarounds, but all involve clients taking action to change their IE settings, or (in an intranet setting) having administrators push out changes to client settings. Here's some more info on this from TechNet (<a href="http://technet.microsoft.com/en-us/library/cc505863.aspx" rel="nofollow noreferrer">http://technet.microsoft.com/en-us/library/cc505863.aspx</a>): <blockquote> Internet Explorer is not configured to trust the certificate authority Anyone, including attackers, can create their own CA and issue certificates. Therefore, Internet Explorer does not trust all CAs by default. Instead, Internet Explorer trusts only a handful of public CAs. If the certificate was issued by an untrusted CA and the website is on the public Internet, the server administrator should acquire a certificate from a trusted CA. If the website is on your intranet, a client administrator should configure Internet Explorer to trust the issuing CA. </blockquote>
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POPrompt the user to install ActiveX/.Net Class Library from browser
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. This table or related slice is empty.
UserOwnerUserId
1. USJustin Grant
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. POPrompt the user to install ActiveX/.Net Class Library from browser
 singulars
 PostTypePostTypeId
 PTQuestion
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
3. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTBountyClose
CommentsPostId
1. COThanks Justin, you summed it up well. However, I find it a little bit overzealous not allowing unsigned code code at all (not even prompting). I would have prefferred a scary screen like the not-trusted HTTPS screen is, but with the option to ignore. It doesn't exist, does it?
 singulars
 PostPostId
 PO
 UserUserId
 USVlagged
2. CONope. This scenario is not common enough to warrant a special screen. Also, since there's an easy workaround for a legitimate publisher (go buy a real cert or get your sysadmin to push your cert to clients!), there's little impetus for Microsoft to build special-case UI for this scenario.
 singulars
 PostPostId
 PO
 UserUserId
 USJustin Grant

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.