Tycoon Talk
Become a Big fish!
The number 1 forum for online business!
Post topics, ask questions, share your knowledge.
Tycoon Talk is part of Freelancer.com - find skilled workers online at a fraction of the cost.

ASP.NET Forum


You are currently viewing our ASP.NET Forum as a guest. Please register to participate.
Login


Tycoon Talk > Web Development and Programming Support > ASP.NET Forum > Security

Reply
Security
Old 02-22-2006, 01:18 PM Security
Junior Talker

Posts: 2
Trades: 0
Talkupation: Parry is on a distinguished road
Hello There

I've got one query regarding security in an ASP Application.

If you have an application with session based login, works fine .. no probs at all.

But .. what about securing the other contents like .swf, jpgs if anyone knows the path then everybody can easily download the file without login.

Any idea of HTTP Authentication... (Directory Based Security???)

Any Help Appreciated !!!

Thanx

Parry
Parry is offline
Reply With Quote
View Public Profile
 
 
Register now for full access!
Old 02-23-2006, 05:43 AM Re: Security
Minaki's Avatar
Defies a Status

Posts: 1,626
Location: Guildford, UK
Trades: 0
Talkupation: Minaki has a spectacular aura aboutMinaki has a spectacular aura about
A couple of options...

You can set permissions up on the file itself and give your users a Windows user account on the server with permissions to the file(s). This requires you to be able to administer the server though.

Otherwise, you can store the files in a directory that's usually inacessable to the public, and use ASP to open the file from the private directory and stream the contents to the user. You can build the usual ASP authentication in this way.
__________________
Minaki Serinde MCP
"Wow, Linux is nearly on-par with Windows ME!"

Please login or register to view this content. Registration is FREE
|
Please login or register to view this content. Registration is FREE
Minaki is offline
Reply With Quote
View Public Profile Visit Minaki's homepage!
 
Old 02-23-2006, 12:30 PM Re: Security
Junior Talker

Posts: 2
Trades: 0
Talkupation: Parry is on a distinguished road
Thanx Minaki

But I think the second option is better.

Please give me any example if you can.

Thanx

Parry
Parry is offline
Reply With Quote
View Public Profile
 
Reply     « Reply to Security
 
Previous Thread | Next Thread Tycoon Talk > Web Development and Programming Support > ASP.NET Forum > Security

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off




   
RSS Feed  Feeds: RSS   JS   XML
RSS Feed  Feeds for this forum: RSS   JS   XML



Page generated in 0.52287 seconds with 12 queries