Re: Protecting files on the server.

Tech-Archive recommends: Fix windows errors by optimizing your registry

Sorry for making the same point again and again. Do you have a particular
requirement for keeping files in a subdirectory of your site or a virtual
directory?

Eliyahu

"UJ" <fred@xxxxxxxxxxx> wrote in message
news:eQqAZ5MBGHA.3624@xxxxxxxxxxxxxxxxxxxxxxx
>I guess that's the problem. At the moment if you go to
>www.fred.com/files/file1234.swf it will bring up the file. What I'm looking
>to do instead is have the program ask the server for a file somehow - but
>I'm looking for suggestions on how to do that. I would assume it would be a
>web service that the program calls. But what's the easiest way to transfer
>the file. Currently I'm using WebClient.
>
> TIA - Jeff.
>
> "Eliyahu Goldin" <removemeegoldin@xxxxxxxxxxxxxx> wrote in message
> news:%23yhGmXMBGHA.272@xxxxxxxxxxxxxxxxxxxxxxx
>> Why do you say the files are unprotected? If you keep them just in a
>> local
>> directory, not mapped as a virtual one and not a sub-directory of your
>> site,
>> no one can get to them from the web.
>>
>> Eliyahu
>>
>> "UJ" <fred@xxxxxxxxxxx> wrote in message
>> news:eq9VfdLBGHA.3536@xxxxxxxxxxxxxxxxxxxxxxx
>>> The files are all on the same server as my ASP.Net application.
>>>
>>> "Eliyahu Goldin" <removemeegoldin@xxxxxxxxxxxxxx> wrote in message
>>> news:u6xE74KBGHA.240@xxxxxxxxxxxxxxxxxxxxxxx
>>> > Does your program on server in asp.net? If it does, are the files on a
>>> > separate server?
>>> >
>>> > Eliyahu
>>> >
>>> > "UJ" <fred@xxxxxxxxxxx> wrote in message
>>> > news:uOqousKBGHA.628@xxxxxxxxxxxxxxxxxxxxxxx
>>> >> Eliyahu,
>>> >> I'm not sure I understand you. That is essentilly what we already do.
>> The
>>> >> problem is when the program goes out to our server to get the file,
>>> >> the
>>> >> files are unprotected on our server. I guess the question becomes how
>>> >> should I protect the files on the server so the program and only the
>>> >> program can access them.
>>> >>
>>> >> Jeff.
>>> >>
>>> >> "Eliyahu Goldin" <removemeegoldin@xxxxxxxxxxxxxx> wrote in message
>>> >> news:%23TJhdHKBGHA.1676@xxxxxxxxxxxxxxxxxxxxxxx
>>> >>> Jeff,
>>> >>>
>>> >>> Another solution is to have the users authenticated in the program
>>> >>> and
>>> >>> have the files sitting in a local directory that the program will be
>> the
>>> >>> only way of getting to the files from outside.
>>> >>>
>>> >>> Eliyahu
>>> >>>
>>> >>> "UJ" <fred@xxxxxxxxxxx> wrote in message
>>> >>> news:ujLN5nJBGHA.2704@xxxxxxxxxxxxxxxxxxxxxxx
>>> >>>> Folks,
>>> >>>> We provide custom content for our customers. Currently we put the
>> files
>>> >>>> on our server and people have a program we provide that will
>>> >>>> download
>>> >>>> the files. These files are usually SWF, HTML or JPG files. The
>> problem
>>> >>>> as I see it - if you know the name of the file, you could download
>>> >>>> it
>>> >>>> off the server (currently we are using an HTTP/Get but I'm going to
>> be
>>> >>>> using WebClient in the new version.)
>>> >>>>
>>> >>>> If there any way to password protect the file so people can't just
>>> >>>> download them even if they know the file name?
>>> >>>>
>>> >>>> The solutions I've come up with are:
>>> >>>>
>>> >>>> 1. Store the file in the database as a blob and read it (but this
>> could
>>> >>>> get slow as we will eventually add video which could get really
>>> >>>> big -
>>> >>>> up to 100MB).
>>> >>>>
>>> >>>> 2. Write a web service that will transfer the file back that has a
>>> >>>> password on it.
>>> >>>>
>>> >>>> Any other suggestions?
>>> >>>>
>>> >>>> TIA - Jeff
>>> >>>>
>>> >>>>
>>> >>>
>>> >>>
>>> >>
>>> >>
>>> >
>>> >
>>>
>>>
>>
>>
>
>


.

Relevant Pages

  • Re: IIS Anonymous User
    ... Thanks Jeff. ... I should have mentioned in my earlier post that the ftp ... service is not running, just the web service. ... >>function of this server is DNS, is it even necessary to have the IIS ...
    (microsoft.public.inetserver.iis.security)
  • Re: Protecting files on the server.
    ... Eliyahu, ... files are unprotected on our server. ... Jeff. ... >> on our server and people have a program we provide that will download the ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: Protecting files on the server.
    ... web service that the program calls. ... not mapped as a virtual one and not a sub-directory of your ... >> The files are all on the same server as my ASP.Net application. ... >>> Eliyahu ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: Protecting files on the server.
    ... The files are all on the same server as my ASP.Net application. ... >> Eliyahu, ... >>> Jeff, ... Prev by Date: ...
    (microsoft.public.dotnet.framework.aspnet)
  • RE: Web Service Implementation Security Question
    ... Server was unable to process ... CompilerParameters parameters, Assembly assembly, Hashtable assemblies) at ... > As for the security problems regarding on using TypedDAtaset in asp.net ... Web Service Implementation Security Question ...
    (microsoft.public.inetserver.iis.security)