More On Medium Trust and Trackbacks
In my last
one of the restrictions listed when running in medium trust is that HTTP
access is only allowed to the same domain. It is possible in web.config
to add a single domain via the
originUrl attribute of the
element as described by
To add more than one domain requires editing machine.config or creating a custom trust policy which will not be accessible to many users in a hosted environment. This may pose a big problem for those who care about trackbacks since even if you could modify machine.config, there is no way to predetermine every domain you will trackback.
One solution is to beg your hosting environment to relax the
WebPermission in medium trust. If trackbacks and pingbacks are
important to you, you shouldn’t be above begging. ;)
Another is for someone to create a passthrough trackback system in a fully trusted environment. Essentially this would act on behalf of the medium trusted trackback creator and forward a trackback to the final destination. It would require blogging engines affected by medium trust to trust this single domain. Of course the potential for abuse is high and the rewards are low (unless people out there absolutely love trackbacks).