From: John Beckett 

"Geo."  wrote in message
news::
> I've got a user who want's a dll file loaded on a web server here, I asked
> him for the source to the dll so I could see what it's doing and he sent me
> the below.

I know very little about this topic, but the code looks to me like VB6
source that could be compiled to create a DLL file (I've done a lot of VB6,
but I haven't used it to make a DLL).

In fact, I've just opened the file in VB6. After setting Project,
Properties to make an ActiveX DLL, and setting the Startup Object to none,
VB compiled the code to a 24,576-byte DLL.

No doubt you could dream up function parameter values that would make the
DLL crash because some fairly heavy financial calculations are performed
(although I have NOT given the code any more than a 10-second glance).

Calling a DLL from a web page leads to all sorts of issues that you should
research. What user does the DLL run as? If it crashed, would the whole IIS
system crash?

My *guess* is that a bunch of people abusing the web page by calling dll
functions quickly could cause the code to tangle. As an example, I once had
a VB exe that was called by ISA firewall when certain attacks were
detected. It ran wonderfully for a couple of months, but one day I found
that a couple of hundred attacks had been triggered in a second or so, and
the system could not cope. I forget exactly what happened - possibly not a
complete crash, but it was not pretty.

John

--- BBBS/NT v4.01 Flag-5