I am trying to re-work the login interface of an e-commerce system that we use but I need some help reverse engineering the user password encryption, it is a fairly basic HEX encryption of some sort. Here is what I have so far (and some sample PW)
My form accepts user name and password. I want to encrypt the password when I send it to the server. I think I can use windows advapi32.dll functions to encrypt and decrypt the data. Does anybody know if I can use this dll directly in my asp? Do I have to write customized dll which uses advapi32.dll and then use the customized dll in the asp?
Basically what the title says. Im looking into and currently trying to develop a nice secure login. To be honest for this project not much of a security issue but yet learning now will help later.
For this instance though there will be a minimum 1 login user to maybe 4 users. A database in this instance to maybe store the encrypted password dont seem worth while so what other way am I best doing ? Or is still the database the ideal method as obviously they have to be stored somewhere.
We have a mission critical ebusiness application residing in about a hundred ASP files. The design exists in the mind of the one person that wrote it. The code is lightly commented at best. It is largely VBS, with some XML and HTML (of course).
I need to document the design such that another programmer could come on board quickly if the need arises. Is there a tool that would ease this task? UML would be perfect, but if I could lift the basic structure, and data flows with a reverse engineering tool that would allow me to edit the results, it would help.
Are there tools that would assist with this? If not, I will use VISIO or Visual UML 4 to document the system as I dissect it file by file.
Today, I am braindead... I can't seem to find this in Google, and I don't remember where I used this code before (so I can't steal it from myself). Anyway, all I want to do is:
for i = 0 to 20 step -1 response.write "<br>" & i next
For some reason, that doesn't work. It shows nothing. I know I am missing something very simple, but, as I said, today, I am braindead.
-- Adrienne Boswell at work Administrator nextBlock.com http://atlas.nextblock.com/files/ Please respond to the group so others can share
I have this piece of code that works fine, but i am needing the code to display the parts in the database from new to old, new on top old on the bottom. Right now it prints old to new. Here is the code, anyone want to help on getting this code to work the way i need it to??? Code:
We have this portal that accesses content from various places on the web. The portal is SSL secured, so any content that is outside the portal and nonsecure is going to cause an nonsecure error prompt in every page within the portal site.
So, we obviously want to get away from these annoying messages. To do it, we've considered a reverse proxy, and even a tool like WGET... but, WGET can't fetch a complex URL... and reverse proxys seem like they might be a serious pain to set up along side our tomcat server
I have 3 fields on a form, date, month, year. I need to add all these values into one full date field but reversed (20051031) - notice UK format.I've just got off the phone to a programmer friend who does not use ASP. He described possible using something like this:
I have a page that lists items from an Access database into a table. Clicking the column headings will sort by that heading, and clicking the same heading a second time will reverse the sort.
The problem I am having is that the sorting order seems to reverse itself as you navigate through multiple pages of records. For example, if there are 10 records being displayed per page, the first page would display in ascending order, while the second page would sort it in descending order. Code:
I have a client who wants to password protect a learning course that is set up in modules. Each module needs to have it's own password protection so users can only access them as they progress through the course.
Each user should have their own password (for each module) and, said client would like the password to expire for the user at some (predetermined?) point. Is this possible? It seems like a lot (in terms of setup), but I don't know much about password stuff.
If it is possible, can someone give me an overview of how it works (theoretically) or where to find more specific info on setting something like this up (in ASP.net)
If it isn't possible, can someone suggest what is more reasonable in terms of protecting the modules?
I created sessions to authenticate username and password. How can I utilize this same script to alert the user to change password at 3rd login? In other words when a user logs into a site after the 3 or 4th time which ever, they are prompted to change their password. Code:
im looking to encrypt a string of numbers in ASP using javascript. Ive been looking up encryption using RSA that does this for text strings. Does anyone know if this can be done with a string of integers?
Is there an encryption protocol that asp classic uses that asp.net also uses?The reason is, I need to allow users to automatically be logged on if they are logged onto the old asp site in the .net one.They are on the classic asp site, they click a link, first, some info is gathered then it is encrypted and placed in a query string.The .Net site gets the query string, decrypts it and takes it from there.
I'm trying to find an encryption algorythme that is emplimented in asp and js so that I can encryp a password client side with the js and decrypt server side with the asp.
what I'm looking to do is encrypt a small portion of html code that is generated by my ASP page. I haven't had much luck finding any info to see if it can even be done though.
Does anyone know a way to encrypt html so its not as easily viewed by the source page code?
I would like to know what is the best to encrypt/decrypt info using ASP. I would like to encrypt some darta when recording it in an Access db and decrypt it when retrieving the data in question.
I guess that there are no built-in function so I was wondering if you would have a script that you would recommend. Or should I use a third party? It doesn't have to be very complex.
I am planning to provide the Pause/Resume while uploading files.Our site is using both java applet and activex to do this.The list of selected files will be stored in an encrypted file using SHA256(I have taken the code from:
[LINK]...
The user can Pause file uploading and can resume file uploading even without login to our site at any time (even after days/weeks).Since the list of files are stored on an encrypted file our site's client service program will upload the rest of files.I invite all to discuss about the security issues arise out of this solution and how secure is the above program using SHA256?
I have developed a real estate software and I want to encypt few lines of ASP code so that it becomes difficult for a user to edit the code and change copyrights. Example:
"Cannot use Request.Form collection after calling BinaryRead"
I get this message cause I have a form that inputs two types of data: a file to upload and a field value to save in a datasource. The encryption is "multipart/form-data". The file is uploaded successfully, but, how can I invoque the fields of the "request.form" without getting this error?
I am currently working on a project where I need to encrypt the query string parameters to hide the details from the user. However, everywhere this parameters are used, I must encrypt on the calling page, and then decrypt on the page being called.
if there is a way to do this transparently so that I don't have to do these steps for all pages? I know this can be done using an HTTP module in .NET but is there a way to do this in classic ASP ?
I need to send an email via an asp page that will encrypt the email so that it can be decrypted when it arrives in the inbox of the person it was sent to.
I know that PGP can be used but i cannot find anything of how to do it online. Has anyone got any ideas where i could find some info about this or even an alternative way of doing things.
i cant generate paypal buttons with software available as mine need to be dynamic. however i have read paypal manuals 3 times now, and all it tells me is i have to have openSSL.
now i dont, least my host doesent anyway, i have an SSL certificate, but it is not open. does anyone have any experience of trying to encrypt there dynamic buttons for paypal and working with ASP ?
How can I encrypt strings using an asymmetric key?I want to encrypt short strings (credit card numbers, etc.) and save the encrypted strings into a database. When accessing the data (i.e. the web admin), he will provide a password (the decryption key).
There are DLL components (http://www.aspencrypt.com), but I can't register a DLL on the machine (hosted server).
I'm looking for a strong, reliable, and cheap component for my encryption needs. I'm wanting to encrypt credit card numbers, encrypt user ID's in cookies, and all the regular stuff.