cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Exit
search
  • Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
  • 한국 커뮤니티
0
Upvote

Asp Database Security

Alcor_Nexus
New Here ,
May 15, 2006 May 15, 2006
Hi! I'm Jayson Escano, 17 years old, from Philippines. I am making my personal website using dreamweaver 8 and I'm familiar with it's user interface. I preferred to use ASP server language because it is easy to manage and develop. My only issue is that the MS Access database that I am using is not secure. Although I had password protected it, a hacker could just look for the Connections/conn***.asp page and read the database password. I'm availing of the free hosting offered by somee.com but the directories are not password protected. A hacker could also download my MS Access database and view the "plain-text" user passwords that are stored in the tables. Can you give me a crash course on how to use hash/salt encryption in my application. I usually use the record-insertion wizard to create a registration form for me but I don't know how to edit the code to use hash/salt encryption because it is too complex for me to understand. Can you also give me tips on how to secure my website by other means. One more thing, why does the page Object Moved with the text "Object moved. Click here" always appear everytime I test my website on my localhost by interacting with the forms etc,. I installed IIS V5.1 on my WinXP with IE 6.0.2. Is there a way to remedy this because it is really annoying and will it happen on the website I uploaded on my webhost. Can you give me other tips to optimize my website and to use dreamweaver to its full potential.Please send me an email at djayz007@gmail.com. I look forward to your urgent reply. Thank you.
TOPICS
Server side applications
565
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
replies 7 Replies 7
latest latest Jump to latest reply
Newsgroup_User
LEGEND ,
May 16, 2006 May 16, 2006
Place your Connections folder below the root of your hosting account. In
other words if the default directory for your web site is "www", place the
connections folder one level below and adjust the path to the folder by
adding ../ when calling the script. This will effectivly hide the
connections folder.

Jeff


"Alcor Nexus" <webforumsuser@macromedia.com> wrote in message
news:e4bghs$64m$1@forums.macromedia.com...
> Hi! I'm Jayson Escano, 17 years old, from Philippines. I am making my
> personal
> website using dreamweaver 8 and I'm familiar with it's user interface. I
> preferred to use ASP server language because it is easy to manage and
> develop.
> My only issue is that the MS Access database that I am using is not
> secure.
> Although I had password protected it, a hacker could just look for the
> Connections/conn***.asp page and read the database password. I'm availing
> of
> the free hosting offered by somee.com but the directories are not password
> protected. A hacker could also download my MS Access database and view the
> "plain-text" user passwords that are stored in the tables. Can you give me
> a
> crash course on how to use hash/salt encryption in my application. I
> usually
> use the record-insertion wizard to create a registration form for me but I
> don't know how to edit the code to use hash/salt encryption because it is
> too
> complex for me to understand. Can you also give me tips on how to secure
> my
> website by other means. One more thing, why does the page Object Moved
> with the
> text "Object moved. Click here" always appear everytime I test my website
> on my
> localhost by interacting with the forms etc,. I installed IIS V5.1 on my
> WinXP
> with IE 6.0.2. Is there a way to remedy this because it is really annoying
> and
> will it happen on the website I uploaded on my webhost. Can you give me
> other
> tips to optimize my website and to use dreamweaver to its full
> potential.Please
> send me an email at djayz007@gmail.com. I look forward to your urgent
> reply.
> Thank you.
>


Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Newsgroup_User
LEGEND ,
May 16, 2006 May 16, 2006
A hacker can't see the connection string in the connections file. It's
server side, so it won't be visible in the browser.

--
Jules
http://www.charon.co.uk/charoncart
Charon Cart 3
Shopping Cart Extension for Dreamweaver MX/MX 2004



Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Newsgroup_User
LEGEND ,
May 16, 2006 May 16, 2006
what what what?!?
is this the right way?


Jeff wrote:
> Place your Connections folder below the root of your hosting account. In
> other words if the default directory for your web site is "www", place the
> connections folder one level below and adjust the path to the folder by
> adding ../ when calling the script. This will effectivly hide the
> connections folder.
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Alcor_Nexus
New Here ,
May 19, 2006 May 19, 2006
thankz guyz.....
i recently found out that Julian Roberts is right...
can you help me in the password issue?
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
netboy
New Here ,
May 19, 2006 May 19, 2006
In Response To Alcor_Nexus
I read somewhere where you could encrypt the database within access. Then rename it with an .asp extension and use that name in your connection string.
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Alcor_Nexus
New Here ,
May 19, 2006 May 19, 2006
i recently installed the tryout version of adove golive and norton antivirus 2006 over my 2005, then dreamweaver started showing this errors "the insertrecord.htm in .....has encountered a javascript error" everytime insert a behavior like restrict access to page...them nothing happens.....no behaviors added....
it all happens everytime i open a page that has a behavior...it is working lately but now i can't even insert an insert record behavior...am trying to reinstall it and i will be back later...
please enlighten me...
to develop an asp website at my age is very frustraing so please...
peace out!
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Alcor_Nexus
New Here ,
May 19, 2006 May 19, 2006
LATEST
pardon the mispellings...hehe
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Copyright © 2025 Adobe. All rights reserved.
Using the Community Experience League Terms of Use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices