
Hack Proofing Your Web Applications Fast Track • Appendix 553
Methodology for Writing Safe ActiveX Controls
; Thoroughly document your control.You should also design your
control with the minimum functionality required to accomplish its
task.
; If your control violates any of the following, it should not be
marked as safe:
■
Accessing information about the local computer or user.
■
Exposing private information on the local computer or
network.
■
Modifying or destroying information on the local computer or
network.
■
Faulting of the control and potentially crashing the browser.
■
Consuming excessive time or resources such as memory.
■
Executing potentially damag ...