How can I protect my private funcs against reflection executing?

by

If someone can currently use reflection on your private methods, then they already have enough access to sidestep anything else you place in their way. Running with less trust may be an option, but that is only to prevent things like plugins from having too much access – it won’t stop a user with (say) admin access to the box, who can simply elevate the access.

If you don’t want code running, don’t put it in physical reach of the malicious user; keep it at a web-service or similar. Any code available to a user can be used directly, or indirectly by decompiling it (and deobfuscating it if needed). You can use some tricks to get in their way (checking the caller via the stacktrace etc), but that will not stop someone determined.

More Related Contents:

  1. How do I get the path of the assembly the code is in?
  2. Set object property using reflection
  3. How to create a new object instance from a Type
  4. How do I use reflection to invoke a private method?
  5. Correct Way to Load Assembly, Find Class and Call Run() Method
  6. How to Load an Assembly to AppDomain with all references recursively?
  7. How can I get all classes within a namespace?
  8. How to get a list of properties with a given attribute?
  9. How to determine if a type implements a specific generic interface type
  10. Purpose of Activator.CreateInstance with example?
  11. Mapping object to dictionary and vice versa
  12. Reflection – Getting the generic arguments from a System.Type instance
  13. Using Case/Switch and GetType to determine the object [duplicate]
  14. Use reflection to invoke an overridden base method
  15. What is the “cost” of .NET reflection? [duplicate]
  16. Get a generic method without using GetMethods
  17. How to check whether an object has certain method/property?
  18. GetProperties() to return all properties for an interface inheritance hierarchy
  19. Invoking methods with optional parameters through reflection
  20. Resolve Type from Class Name in a Different Assembly
  21. Check if a property exists in a class
  22. How to copy value from class X to class Y with the same property name in c#?
  23. How do I create a generic class from a string in C#? [duplicate]
  24. Get member to which attribute was applied from inside attribute constructor?
  25. How Can I add properties to a class on runtime in C#?
  26. Can I get parameter names/values procedurally from the currently executing function?
  27. How do I check if a type provides a parameterless constructor?
  28. Using Reflection to create a DataTable from a Class?
  29. Get private Properties/Method of base-class with reflection
  30. Why is the use of reflection in .NET recommended?

Leave a Comment