Windows shared hosting has long supported the ASP.NET trust levels feature, which allows hosting providers to control how much access a web application has to server resources. Among these levels, Full Trust provided the highest permissions, granting applications unrestricted access to the .NET Framework libraries and server resources.
However, in recent years, the Full Trust level has been discontinued in most modern Windows shared hosting environments. This change has impacted developers who were accustomed to relying on unrestricted permissions for their applications.
What Was Full Trust?
In ASP.NET, trust levels were configurations defined in the web.config file. These included Medium, High, and Full.
Full Trust gave applications permissions equivalent to the server administrator, allowing unrestricted file access, registry modifications, unmanaged code execution, and network operations.
This was convenient for developers, but it also came with serious security risks, especially in multi-tenant shared hosting, where many customers share the same server resources.
Why Full Trust Was Discontinued
The discontinuation of Full Trust was driven by multiple factors:
- Security Concerns: Full Trust allowed applications to bypass isolation boundaries. In shared environments, a malicious application could potentially access or interfere with another customer’s data or even the server itself.
- Evolution of ASP.NET and .NET Core: With the release of ASP.NET Core and newer versions of the .NET framework, Microsoft moved away from Code Access Security (CAS) and trust levels. The modern .NET runtime is designed without trust levels, making them obsolete.
- Hosting Best Practices: Hosting providers must prioritize security and stability. Running customer applications under Full Trust contradicted the principle of least privilege, increasing the attack surface.
How This Affects You
If your website was built many years ago and depended on Full Trust, you may notice some compatibility issues when moving to a modern hosting plan. This usually affects older applications that try to access system-level features.
For most websites, blogs, business sites, eCommerce platforms, there is no impact at all. Your site continues to run normally under standard trust settings.
What Are Your Options?
- Stay on Shared Hosting: If your site is modern and does not require Full Trust, you can continue with Windows shared hosting safely.
- Upgrade to a VPS or Dedicated Server: If your application truly requires system-level access, a Windows VPS or dedicated server gives you the freedom to configure the environment however you need. Please contact our support team.
- Update Legacy Applications: If your site is older, consider updating it to modern frameworks that don’t rely on Full Trust. This improves security and long-term compatibility.
Conclusion
The end of Full Trust in Windows shared hosting is ultimately good news for customers. It means:
- Stronger protection for your website and data.
- Better stability across shared servers.
- Alignment with the latest Microsoft technologies.
- While some older applications may need updates, the long-term benefit is a safer, more reliable hosting environment for everyone.
