I'm uploading xls file onto my server using ASP.NET VB. Should I take some precautions so that not one would upload some hacking script to hack my site using this upload?
View 14 Replies
Is there an auto hacking software that tries to hack my localhost asp website? I need this to know my weak points in my website.
View 1 Repliesi want to learn ways of hacking for avoid them in aspow do hackers hacking web sites?and how do avoid them?
View 2 RepliesI have an app using iis7 and the urlrewrite module, it take friendly urls and converts them to queries like this: [URL]
and converts it to: [URL]
the question I have is that will looking through my server event logs I notice that some ips are calling the following:[URL]
do you think this is the urlrewrite module messing up or is somebody trying to hack my site.
I've been using an asp 3.0 widget for this purpose , but it been broken for a while and rather than get it back up, I'd love o get a native asp.net solution, can any one point me in the right direction pleaseI once wrote some asp.net code to do this, but the permissions on the server, which I found to be common every where prevented asp.net native picture upload, perhaps i got it wrong, well now I wanna fix itI need the code to work in a shared hosting IIS 7 environment. I use vb.net, but can usually convert c# to vb.net
View 1 RepliesI've got a DropDownList and I'm trying to prevent it from being used as an attack vector. Can I assume that the user is unable to actually change the values of the DDL and postback to the server? At the moment, I get this ASP.NET error message thrown if I try and change the packet after submission:For security purposes, this feature verifies that arguments to postback or callback events originate from the server control that originally rendered them.Am I right in thinking that this is due to the integrity being compromised in the viewstate hash?
View 2 RepliesIn quite some scenario's, placing app_offline.htm in the root is just right: you do some updates, the message appears while updating, and that's that. The idea is, as Microsoft puts it, that before anything is called, IIS first checks if app_offline.htm is there and if so, it cancels everything and displays it.
So for so good, but in many situations it doesn't work:
When you have a compile error in an ASPX page and a user links directly to it When you have conflicting assemblies When you have a parsing error in your web.config In the midst of removing / uploading the entire site.
A direct link to a static HTML page is still displayed as suchm File-not-founds, access-denieds are thrown before the message is shown Possibly more scenario's exist that fail. My point is: for any serious updating work, app_offline.htm is not suitable. I sometimes create a redirect in IIS, to another site, but another site may not always be available and it can confuse users.
Ideally, I'd want to keep the current location in the url location bar of the end-user, show the message, and have the page auto-refresh each minute to see whether the site is back, so that the user continues where he left of when the site comes back. While technically easy enough with a static page, it will fail for the above mentioned reasons the minute an error is thrown.
I will have my asp.net site on a shared hoster. Whats the best way to prevent others hacking and viewing my code? The code I most want to secure is in usercontrols and some more code is in class modules. vb.net/MSVS2005/Ajax) Or do I secure the whole site? I also here some encypting code tools cant handle sophisticted code. Also does encryption slow down code and make the site harder to manage...
View 4 RepliesI am working on a video streaming project, objective is to upload video to content provider's server and play it to the authenticated user only, it should not be accessible to unauthorized users, content provider provided APIs and Endpoints to pass security options but it seems not working when I pass those parameters to API along while uploading video streaming file, I need to know how I can do that, is there any other way that I can use rather than Content Provider's API Endpoints
View 1 Repliesim new to asp.net, i have a dating software and it uses vwd2008, currently the software installed was the wrong 1, now i need to reinstall the new with chat.
I was told by the supplier that i can overwrite the existing files with the new package that has the chat. They say make sure to preserve files that i have made changes too and also run the ajax chat sql script from the sql folder.
My concerns are, i have a client base built already and i have made many changes, so i dont want to loose this.
How would i preserve them? If i drop and drag the folder will it warn me and give a option not to overwrite the files as it loads?
How do i run the ajaxchat script in my sql folder?
I have created a site, now I want to upload it on the server. I do not have the experience of uploading the site on server, I am using ASP.NET C# MySQL.
View 3 Replieshow can i upload my asp.net site to godaddy i tried but showing custom error
i don't know how to set iis in godaddy
i'm trying to do something weird. I have two sites, one that allows me to handle some information and administrate it (site 1). I have another site that is for querying information only (site 2). I need to upload files in site 1, but i need to save it in site 2, to leave it available to download in site 2.
View 4 RepliesI need to create an upload site to upload large files over 2GB I want ot create a site like [URL]. Once these files get upload i want them to have a link to the file created but the link encrypted. I know there is a limit to http upload. I have used a bunch of the flash upload web apps but are capped at a specfic mb becuase of .net. What options are out there.
View 2 RepliesI'm trying to find a way for users to upload image to my site ,
In my db table I have a column name Image1 type image [allow null]
And I would like the user (among other fileds to fill, to upload image )
I have an aspx website and I'd like to upload a file to it. The file is being processed later, so I need to support some extra information with it.
This is the website I have to far:
<%@ Page Language="C#" AutoEventWireup="true" CodeBehind="Upload.aspx.cs" Inherits="ABC.Web.Upload" %>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head runat="server">
<title></title>
</head>
<body>
<form id="Form1" method="post" enctype="multipart/form-data" runat="server">
<input type="file" id="File1" name="File1" runat="server" />
<input type="text" id="FileId" name="FileId" runat="server" />
<input type="submit" id="Submit1" value="Upload" runat="server" />
</form>
</body>
</html>
This (and the code behind) works very well when using a browser and clicking through the form. But I want to upload the file using the WebClient from C# code. I don't have to use the WebClient. I can also modify the upload.aspx to suit me, there is no requirement that it works from a browser, but this is the only example I've got working.
Looking at fiddler (I just started using it, so I probably have missed it) I could not figure out how I would create such a request from code.
At the moment when using the WebClient I am specifying the address and the local filename. I have a breakpoint in the code behind in my website but the File1 and FileId are not set (as expected).
How do I have to modify the website and how do I have to use the WebClient to get the upload working?
EDIT: Just found out about the Request.Files, that will give me the file, but how about the other fields?
I am using ASP.NET 2008 web developer and i dont know how to share youtube videos in my pages.
I want to play youtube videos in my site without upload
logging to another website and uploading file to that site.
View 1 Repliesi want to provide facility to my users to upload multiple images into my website using asp.net 2.0, using single file uploader i.e. want to upload all the image file from a folder.
View 3 Replieshow to connect database create in sql server ,to my web site upload on domain.
View 1 RepliesI have a button in a repeater control. It saves the data on the screen, so ideally I'd like to do this and not have the screen refresh, as there is no new data to be shown. When I am debugging using localhost, the page just sits there, the data gets saved all is well.However, when I upload the very same page and code to my host, clicking the button causes a full refresh, which as there is a lot of data, means a long wait each time.
View 2 RepliesI am getting this error when I am trying to upload a video in my site. how to fix this?
View 3 Repliesi have uploaded my site [URL] it it working properly on local machine but when i uploaded on server i am facing 1 error on button clik of any form. there are two ages career and contact whenever i submit this data by clicking button i get this error. Server Error in '/' Application. Runtime Error Description: An application error occurred on the server. The current custom error settings for this application prevent the details of the application error from being viewed remotely (for security reasons). It could, however, be viewed by browsers running on the local server machine.
Details: To enable the details of this specific error message to be viewable on remote machines, please create a <customErrors> tag within a "web.config" configuration file located in the root directory of the current web application. This <customErrors> tag should then have its "mode" attribute set to "Off".
[Code]....
Notes: The current error page you are seeing can be replaced by a custom error page by modifying the "defaultRedirect" attribute of the application's <customErrors> configuration tag to point to a custom error page URL.
[Code]....
I am using DotNetNuke and I have posted this in their forum. But it is more appropriate here. I am trying to upload a 13 MB video file to my site ( a .flv file) using the file manager function under the host login. I understand that .NET limits the upload size to 4 MB for security reasons. In accordance with other posts here I added this code to my web.config file to allow bigger upload.
<httpRuntime maxRequestLength="51200" enable = "True"
I added it in the system.web section. Now, I still get this error:
"An error has occurred.DotNetNuke.Services.Exceptions.PageLoadException: Maximum request length exceeded. ---> System.Web.HttpException: Maximum request length exceeded. at System.Web.HttpRequest.GetEntireRawContent() at System.Web.HttpRequest.GetMultipartContent() at System.Web.HttpRequest.FillInFormCollection() at System.Web.HttpRequest.get_Form() at System.Web.HttpRequest.get_HasForm() at System.Web.UI.Page.GetCollectionBasedOnMethod(Boolean dontReturnNull) at System.Web.UI.Page.DeterminePostBackMode() at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint,
Boolean includeStagesAfterAsyncPoint) --- End of inner exception stack trace.
I have a requirement where I have to transfer a user from Web Site 1 on Server A to web Site 2 on Server B.
On Web Site 1, I have to provide controls to enter user id and password and which have to be validated on Web Site 2 on server B, after validating them I have to redirect the user to Web site 2.
what is best way fo doing it. code examples are greatly appreciated.
Note: On Web Site 2, user login functionality is already existing and it is provided by ASP.Net login control, am not sure how to handle the user login process from two different places.
or is it the best way to move Web Site 2 from Server B to Server A so that, the same login controls will be shown using Iframe on Web Site A.
