It's not difficult for me to save code to temp folder, use csc.exe to compile it and load the assembly dinamically, but how can I execute the code with limited permissions?
For example, how can I prohibit the code from...
Any information(blog/article/paper/manual...) is welcomed.
You probably need to load the assembly in a different AppDomain, which you create giving it the permissions you wish it to have. Generally, assemblies loaded into the default AppDomain will have the permissions delegated to that AppDomain. By creating another AppDomain, you will have complete control over what permissions that AppDomain is given, which propagates down to the assemblies loaded into it.
One caveat, however, is that calls to code loaded into another AppDomain will need to be marshaled, which will affect performance somewhat.
The following articles should help get you started:
http://blogs.msdn.com/shawnfa/archive/2004/10/25/247379.aspx
http://blogs.msdn.com/shawnfa/archive/2004/10/22/246549.aspx
There are two ways of looking at this; the first is via an AppDomain with separate trust, which jrista has given a good answer about. The second is: don't compile arbitrary/user code ;-p Depending on the scenario, you may be able to construct a DSL with access to only the functionality you are happy to expose, and compile that. I've used this approach successfully a number of times. This creates a very controlled sandbox - the only thing to watch is things like infinite loops, but even that is fixable if you really need.
So I guess the real question is: does the input have to be C#? Or is that just a convenience?
IMO, the start is create a guest user account to run the process under. Then follow additional steps.