If given the right, the web browser can install the
Win32 client on the user??™s operating system and then send the required information back
to the web application, such as username and password information. The interaction
between the ActiveX control and the web application is invisible to the user, hiding many
complex interactions.
Following are the technical steps involved in this example:
1. A web site invokes an ActiveX control.
2. If the ActiveX control is not already installed on the system, the user can be
prompted to install the control at this time. As with all installations, a machinewide
con?¬? guration change requires administrative rights.
3. The ActiveX COM object is invoked by the user??™s browser, requesting
permission to execute instructions for the control.
4. If the operating system grants rights to the ActiveX control, which is often
determined by the security settings in the user??™s browser, the system will
complete the instructions listed in the control, such as install programs, update
register keys, or access the ?¬? le system as needed, searching for speci?¬? c product
versions. Typically, installation requires downloading a dynamic link library
(DLL) and registering it under HKLM\Software\Classes so that it can be
invoked.
Pages:
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359