It's funny that this has not been invented yet, or has it?:
You store your DB outside your default website.
It is accessed only through your ASP code and a ODBC-connection.
This way your DB is not obtainable for the web user.
Why doesn't Any One create a connection corresponding to ODBC, lets call it
FileConnect that in the same way allows us, in a web site, to have directories
and files that are really hidden?
I know how to copy files from one location to another but how would I go about copying a file from one directory into serveral - or actually all subdirectories in a single action? Some kind of loop
Basically I want to be able to enter a filename into a text field and click submit which would then copy the named file (which resides in the root directory) into every subdirectory under the root (1 level only). Would be helpful to be able to specify mutliple files to be copied at once.
I found this script on the web that I've adapated a little to see the files I put into a directory. However it doesn't see any sub directories. Does anyone have any idea how i can point to a directory and list everything, including the directories? Code:
In php you can have a script like: http://localhost/page/parameter1/parameter2 where page is acually a php script and the script gets the parameters in $PATH_INFO
I need something similar in asp. If possible without modifying any settings on IIS. Here is a tutorial on how to do it in php. http://www.zend.com/zend/spotlight/searchengine.php
I am trying to set SA-Fileup to filter the files that are uploaded based on the name of file selected in the form. I am able to get it to work on Filetype, but I need it to do it on Filename is not Filetype. where I can find something on this?
i have a subdomain on my works server that i use to store different stuff on, like different projects that i'm working on. They are all set up in their own folders, for example, sub.blah.com/project1, sub.blah.com/project2 etc etc. (all the folders have different names).
What i want to do is to create an index page on sub.blah.com that will list out all of the folders. I dont have any access to the server workings so this all has to be done with a script.
My global.asa maintains some stats for me. However when I put part of my site in a sub-directory it appears to run the global.asa file from the sub-directory when I am accessing content in that sub-directory. This makes all the paths specified in global.asa wrong.
I can understand that it runs, since it is application driven and all sub-directories will be part of the same app, but I can't understand it running in a different directory to where is resides.
I have an include file which contains some images. If I use this include in a sub directory, the path is obveously wrong. How can I sort this problem - is it best to just use absolute paths rather than relative?
I'm creating a site which will have the home page at the root level, but all of the sub pages in sub directories:
root/ -homepage.asp -subdirectory/ subpage.asp -images/ logo.gif -includes/ header.asp Each page of the site will have the include <!--#include virtual="/includes/header.asp" -->
header.asp is a table with our company logo, logo.gif. The problem I'm having is that subpage.asp does not display logo.gif because the path in the include is only correct at the root level.
I don't want to create multiple includes. Is there another way to make this work that I'm missing? Thanks!
I want to read every file in D:DISCS, seperate the filenames into: Disk Number, Track Number, Artist and Title - drop the .zip and the hyphens entirely and insert the data as a record in a database.
I'm including a template on all pages in a site. In the template I have a menu. What I'd like is to have a different menu displayed if I'm in a different directory. Something along the lines of:
If path is /mainsite Then Regular Menu If path is /admin Then Admin Menu
Just not sure about how to go about getting there. My first thought was to use the PATH_INFO server variable, but that returns the page name too. Any suggestions?
Is there any way to setup a multiple password page where if user1 logs in it will take him to dir1 and if user2 logs in it will take him to dir2 and so on. Basically, we need a page that checks to see if the user name and password exists and then redirects accordingly.
I have managed to cobble this together And now I have got stuck with modifying it.
What it does is provide an option box that allows you to choose any of the folders in a directory. The files in that directory are then listed below the option box. (the file structure dictates the order/grouping of the files)
It change the path-to-directory with a manual option. Code:
I have only been developing small sites using asp and Access database. I want to advance my skills and develop a large site. Basically, I need direction in relation to having a user set up an acct., and once set up, being able to upload images. FrontPage (dare I say it) has always enabled me to allow visitors to upload one image at a time, and then only to a specific directory. What I want is the ability to have someone upload a specified amount of images to a directory that is created when they opened their account. ie., /tom/images If anyone knows of of good tutorials on this, I sure would appreciate it. I also want the ability to check images file size and dimesions, and resize or reject if neccessary. Can I learn how to do this w/out buying some program online.
I need to look up what user name was used to login to a protected directory using ASP.
I don't want to create a login page, etc. It shouldn't be necessary. Only employees who already have user accounts need to log in to the webapp and the protected directory login box is all the security I need. I just need to be able to access the username that they used in my application. Code:
I have a client who wants to password protect a learning course that is set up in modules. Each module needs to have it's own password protection so users can only access them as they progress through the course.
Each user should have their own password (for each module) and, said client would like the password to expire for the user at some (predetermined?) point. Is this possible? It seems like a lot (in terms of setup), but I don't know much about password stuff.
If it is possible, can someone give me an overview of how it works (theoretically) or where to find more specific info on setting something like this up (in ASP.net)
If it isn't possible, can someone suggest what is more reasonable in terms of protecting the modules?
IIS can handle security on its own without the need for complex scripting and i like the idea of being able to just let the system do it however im not sure how to set such things up and would that mean that if you used something like integrated windows authentication that security is delt with by windows and its users info rather than getting the info from a database of my choosing ?
the whole concept is quite confusing to me but there must be a simple ish way to set up at least some form of secure site area within my web.
I am starting to learn asp and I have IIS installed on my WIN xp pro machine. Do I have to worry about security for any reason at all. I don't believe I have file sharing on at all, then again, I don't know if that has anything to do with this.
How do I run security through all of the pages? The users log in, an asp checks their password, then what do I do to secure the pages from users that do not enter the password?
Developed a web application which adopts a custom security model which displays a login page and requests a username/password combination. The username works in a mixed-mode of usernames matched with the windows login name and some extra accounts (similar to SQL mixed-mode security). Web application is executed both in the corporate intranet and externally on the web. Getting user complaints about having to login to the web application when they have already logged-on to windows. I have coded a challenge/response (response.status=401) to get a user's window login through the ServerVariables. This seems to work OK for the intranet access. If the user's windows account is not located in the application database then I redirect to the standard login page for the username/password combination. When the application is executed across the internet through a firewall, the user is prompted by IE to enter the windows domain, username, and password. There seems to be no mechanism to avoid this because of the challenge/response code. I wish that with external access from the internet that users are automatically directed to the application login screen and not faced with the IE windows authentication dialog.
Does anyone know how to implement one way hashing or encryption using ASP 3.0 and no additional components.
I need to secure a intranet application which is being moved online, currently the passwords are stored in plain text, ideally id like to hash the passwords in the database and hash the form data when testing, but I don't seem to be able to find any hashing methods for standard ASP, perhaps someone has a nice code snippet for hashing.
is there a way to login to a particular security group from asp?I use IP addresses and email addresses to identify web users and most have general IWAM_COMPUTERNAME access. Once web users login is there a way to give SOME of them access to a NT security group based on stored NT user/password information?
I am working on a new feature on my website where people can write their own HTML files. They are actaully going to have .ASP extensions, and are hosted on my webserver. So, what security issues can you suggest? So far all I have got is disabling '<% %>' tags. Anything else?
I'm developing a local intranet site. i'm just new in ASP, could anyone help me how to put security?i have username and password but i want the site not to go back on the previous pages after logging off.
I'm using macromedia dreamweaver and VBscript, i have a database using MS Access.
i am developing a project thats gonna handle some transactions too.Since this is my first commercial project so i am worried about its security. so my question is "is asp safe enough to use with something serious ?" or i should use something else like PHP .
I'm about to embark on a project that will allow my clients to produce invoices via any internet enabled PC. This post is regarding the security options available to me.
I will implement a Username/Password scheme to restrict access to the facility, but since part of the facility will allow access to customer information I wondering if I should also look at a more secure protocol than simple HTTP.
I have very little knowledge regarding the options available to me and as such I'm hoping someone can give me some suggestions of an overview of the different things I could use.
One more conceptual thing! Tell me if i am right! I have developed a concept that SSL does three jobs!
1) It forces the client to connect ot the server through SSL port rather than 80 2) It sends data from client to server encrypted! 3) It provides a certificate from the third party (SSL provider) that we are the rightful owners of this website!