Protect Conn.strings
what is the best way to protect the connection strings keeping an effective, low overheaded access to them ?
what is the best way to protect the connection strings keeping an effective, low overheaded access to them ?
I have a some code:
Rs.Open "[TableName]", Conn, 1,3,2
RS.AddNew
RS.Fields("Account_Name").Value = request.Form("Account_Name")
my question is does conn, 1,3,2 only write to the database not making the data readable? if i change it to conn, 0,1 i get page can't be displayed. I'm using access DB, with conn 1,3,2 it inserts fine, but when i go to query it i get no records found, but i see the data in the database, anybody have any ideas?
<%
Set Conn = Server.CreateObject("ADODB.Connection")
Conn.open application("dtat_motor_connectionstring")
set rs = new adodb.recordset
'Set RS = Conn.Execute(' "exec spcn_update_transactions &
customer_number, customer_name, customer_address, customer_city,
customer_state, customer_zip, customer_phone, vin,
acct_number, tag, title_number, tag_type_number, branch_number,
institution_number, yr_make, state_from, type_number)
response.write rs
%>
I'm I connecting them correctly. Is there and easier way to execute a stored procedure. I'm trying to insert data into a SQL page. I have to have the customer number returned to me asap for the next page.
I use this code all the time, but what does the ",,129" mean? Are there other parameters that one might use (I only do fairly simple SQL commands).
conn.execute strSQL,,129
Is there any way to modify the locktype when updating a database via a connection object's execute method? I have a game which worked completely fine when only ten or so people were playing, but as it grew into the hundreds, many people started getting errors and I'm 99% sure that they occur when the database tries to update when it's locked, which means that my connection execute statements are defaulting to pessimistic locking, which I don't want them to. Does anyone know how I can fix this?
View Replies View RelatedI have a problem utilising my connection string to open more than one recordset in one ASP page.
The following code runs absolutley fine on a server running ASP 3, but falls over when run on a server running ASP 2 (the error says:
Microsoft JET Database Engine error '80004005'
Could not use ''; file already in use.
The code I am trying to run is: Code:
I searched the forum but I am still a little confused regarding the global.asa file. I created a global.asa file and it is in the root of the virdual directory. I then created a sub to initially connect to a datase such as: Code:
View Replies View RelatedI have 3 db connections, 2 of which are dsnless connections to access db's. Any of my previous existing pages that have recordsets from these db's work fine. I can add a new recordset to them and it works fine as well.
If I create a new page and add the same recordset in the same directory, I get the error msg saying something like "unable to open registry key" which from my understanding, means the page cant find the db.
Now I am using Dreamweaver 2004, and using their way to create connections where it creates a file, and then just adds an include statement an asp page if you use that connection.
Any good way to test this connection on the page or any ideas on how to troubleshoot where the path its pointing to is incorrect...im pretty much stuck at this point.
What is the best way to control is a transaction? I've done a little test and both of the examples below seem to do the job, but I was wondering which is the better method, this:
If err.number <> 0 Then
conn.RollbackTrans
Else
conn.CommitTrans
End If
Or this:
If conn.Errors.Count <> 0 Then
conn.RollbackTrans
Else
conn.CommitTrans
End If
I'm trying to access an access database by including the DB's password within the connection string. I try to connect to the DB, but I get and "Incorrect Password" error. What am I doing wrong?
set conn=Server.CreateObject("ADODB.Connection")
conn.Provider="Microsoft.Jet.OLEDB.4.0"; uid=admin; pwd="pass"
conn.Open(Server.Mappath("maindb.mdb"))
set rsUpdateEntry = Server.CreateObject("ADODB.recordset")
I am currently working on a small asp application. Now I would like to store the complete database connection in the application object. Note I want to store the connection NOT the connectionstring. For that purpose I wrote a small asp include which connects to the dbase and stores the connection object to the application object. However when I use this include in my pages then it doesnt work. What I am doing wrong? Here is the code:
View Replies View RelatedI recently installed IIS lockdown, and ever since my ASP pages have been hell. One problem is that now after a user views my ASP page which reads my local Access DB, the temporary file, .ldb, stays in the folder forever!
This temp file is created when a user opens the file, so I checked out the .ldb file and it says the ADMINISTRATOR is opening the file! How can the internet user be using the ADMIN account?! This is not good news! I will share my code for my page; however I have a feeling the code isn't the problem, but a setting is. Code:
how can you protect the .mdb that an asp page modifies? This must be open to all for modifications right? But how can it be hidden so people can't just download it if they guess the path?
View Replies View RelatedI'm trying to protect a directory from users not logged in.
Let say i'm trying to protect a direcory called files.
I only want the user to acces the files when they've logged in.
http://www.sitename.com/files/filename.doc
Even though they know the name and path i want to prevent people from downloading the files.
I don't want the user to be able to send out the link to another friend without logging in.
Is this possible i'm using a wiindows server.
how to protect any files inside a directory from unauthorized download?
View Replies View RelatedI have several PDF and MPG files I would like to provide to users to
download via HTTP. I also have a database of user accounts. I would like to
protect the PDF and MPG files so that users cannot "save target as" or "view
source" to directly link to the files.
My first thought is that I would have to remove anonymous access to these
files and/or their parent folder within IIS. I was thinking that I could
then create a Windows account called something like WebUsers and give it
access to that folder. I'm hoping to write some ASP code that authenticates
my users against my own database and, if successful, logs them into IIS via
the WebUsers account (so that all my users share the same account).
My problem is I cannot find an code or method or object to do this. Is there
some simple function that I can use to pass a username, pw, and domain to
IIS to authenticate the user that would then carry through for them to be
able to download non-ASP (PDF, etc.) content?
Ok, this is the setup:
I have archived PDFs, but I want to restrict access to them to members only. Right now, my members only site uses a session variable to log in users.
Is there anyway to set it up so that users cannot open the PDFs unless they're logged in???
The problem is the members only site is seperate from the site where the PDFs reside. That is, a user goes to mymagazines.com and searches for sometext, and a list of links pops up with all the relevant matches, mostly PDFs. This entire process, is free for all to use.
But when they actually click on the link to the PDF, I want them to log in to the members only site. Is there any way to do this?
I have a protected area for a personal portfolio, whereby a client will have login details, and have access this way. Because the work has been done within companies I have to hide this from the general public, due to stupid legal issues.
I have a download directory whereby files are linked. People cannot access the portfolio, however people can type a full path to say the downloads directory and grab a file this way.
Because this is not a managed area as such I am unsure how to disallow such a download or viewing of pdf files without a successful login. Perhaps this is something to do with the host.
let say a customer buy the pay version. there is a chances for him to give other people to install it n use..is there any way i can block it. 1 application only for 1 person / domain name. any suggestions on the coding part.
View Replies View Relatedi've developed an appliaction that i want to sell it to my client, but dont want him to reseller it, so is there any solfware or techniques that i can used to protect my asp source ?
View Replies View RelatedI'm selling asp softwares on the net and I would like to find a way of protecting these softwares with a key or something. Would you know any solution for that?
View Replies View RelatedI'm after a script that will allow me to password protect a page, but allow multiple users. IN that I mean I can have 5 people with different usernames/passwords who can all access the same page.
View Replies View RelatedI have a simple 2 page frameset that I am trying to protect using asp. I've
included the following code listed below at the top of each page including
the frameset page in an attempt to protect each page from unauthorized
access.
When I open any of the pages in the frameset individually, I am
presented with the proper login page as expected, however if I open them
thru the frameset page, redirection to my login page does not occur. Code:
I am working on a web site that uses ASP 3.0 with Microsoft SQL Server at the backend. ASP is used to query the database and fetch data and display it on the web page. I am seeking a technique that can protect my ASP pages from being downloaded.
What I mean by this is that when a visitor runs a search query on my site and the results are displayed on the web page with .asp extension I want to restrict the visitors from saving those pages on their hard drvies. Is there a technique to restrict visitors from saving .asp pages, or may be a 3rd party component that does this.
is it possible to protect ASP code in some way? Can it be compiled, or
otherwise protect the source somehow?
I have a small ASP application that has no OCXs (so there is nothing for the users to download, etc) and no DLLs (so nothing to register).
Currently, I only allow prospects to demo it online through my server and then they get the files (source code) when they purchase it.
What I would like to be able to do is allow them to trial it on their servers for a limited period, but I don't know how to protect my code from being seen, used (if they don't pay) or copied?
Can you please suggest the possible ways of doing this? I know that you can copy functions into a compiled DLL and then protect the DLL, but then I would have to run an install program to register the DLL, correct?
Is there anyway for me to make users enter an username and password in order to get access to download a pdf file.
I will have a list of valid usernames and passwords?
I have one registration form with "submit" button. I don't know how to make protection from automatic submit (with picture and security code)?
View Replies View RelatedI have a website which contains certain files (ppts, pdfs) in its root directory. By directly giving in the URL in the address bar, anybody can access the files. I want the users to be logged into the website in order to access them.
For example, if the file location is http://abc.com/my.ppt, I would want the user to be redirected to the login page of the website when he/she tries to access this link. If already logged in, the file should download. How can this be done?
I'm more of a LAMP person than an ASP/windows type (I'll be honest I haven't got a clue about ASP). Anyway, I'm looking for a way to password protect a file. Normally under a unix box I would just use .htaccess and .htpasswd to use http authentication but I don't have a clue how I would do such a thing under a windows box.
View Replies View Relatedthe page is to be able to allow a user to enter a password so as to download documents. It does not meant for any users to download. It is for some specific users. What I want is to send them a password through email, but I want to know who's has downloaded.
View Replies View RelatedIs it a way I can protect my documents and images on a webserver without having direct access to administrate the webserver.
When I make an asp page I protect the information pulised on this page easy. But if I link to some images and pdf files on my site, these are not protected. If a person get the url to this image or file thei can easy download it.
One way to protect these files is to store them in a database, but is there another way to protect them.
Can I for example password protect a folder where I can put all my files and images? Here I mean password protect a folder without having direct access to the webserver.
I have got a password protected page which works OK.
What I need and cannot get to work is a Session Variable,
so that if someone try's to open a page that is
PASSWORD PROTECTED it will redirect user to logon page.
i.e. someone enters correct username AND password,
which open up a page. From this page I want to open
just one other page which is protected. Code: