Re: Securing files stored in virtual directory

From: Softwaremaker (msdn_at_removethis.softwaremaker.net)
Date: 12/01/04 

Date: Thu, 2 Dec 2004 04:32:58 +0800

It seems that we are talking about and referring to things that are worlds
apart ;-)

What you just described has nothing to do with Web Services at all. What you
are referring to are just web server and network security settings. 

-- 
Thank you.
Regards,
Softwaremaker
http://www.softwaremaker.net/blog
=========================================
"Sumaira Ahmad" <sumaira.ahmad@gmail.com> wrote in message
news:1627c5ae.0412010842.46e65876@posting.google.com...
> Thanks for your reply..But can u tell me that if I have files stored
> in the virtual directory of my Web Server is there anyway of securing
> those files so that they cannot be viewed from the browser.. For
> instance if I am storing Job Appplicants resumes on the Web Server in
> its virtual direcrtory I do not want anybody else to view it except
> the Employer who has posted the job.
> but if i just give the entire path in the browser I am able to view
> those files which I basically want to secure..Any idea??
> Please let me know..
> Thanks,
> Sumaira
>
>
> "Softwaremaker" <msdn@removethis.softwaremaker.net> wrote in message
news:<O6Yi6p51EHA.2788@TK2MSFTNGP15.phx.gbl>...
> > "Sumaira Ahmad" <sumaira.ahmad@gmail.com> wrote in message
> > news:1627c5ae.0412010001.ce6c0a0@posting.google.com...
> > > Hi,
> > >
> > > I am a big problem here and would really appreciate if someone would
> > > shed some light on it.
> > > My ASP.NET application stores files in the virtual directory of the
> > > Web Server. These files are sent as DIME attachments in SOAP Messages
> >
> > [Softwaremaker] DIME Attachments are NOT inside SOAP Messages but
outside of
> > it. Thats why they are called attachments ;-)
> >
> > > and stored on server. Now I realized that these files can be simple
> > > viewed on the browser. Is there anyway of securing these files because
> > > they contain information not for public use, only for authenticated
> > > authorized use.. Can we define some policies on the server for that..
> >
> > [Softwaremaker] Because they are outside the context of the SOAP
Messages,
> > you have to use your own methods to secure it.
> >
> > >
> > > Please let me know,
> > > Thanks,
> > > Sumaira Ahmad

Relevant Pages

  • [UNIX] Multiple Security Vulnerabilities in W3Mail
    ... W3Mail can incorrectly expose downloaded MIME attachments without ... In cases where the web server has server side scripting of any type ... W3Mail can be made to retrieve any file to which the web server user ... Unless indexing for the MIME attachments directory is disabled it is ...
    (Securiteam)
  • Re: If / Then / Else Help Needed - More then one condition possible?
    ... Please quote what you are referring to. ... Cut-and-paste my code to create two files: ... post it to your Web server and visit CDO_Test.asp ...
    (comp.lang.javascript)
  • Re: Running Web Server
    ... anil chada said: ... > Recently i was able to build RedHat Linux machine. ... > I want to use apache web server for this purpose. ... html mail or attachments will go in the spam ...
    (comp.os.linux.misc)
  • Re: - travel May.pdf (0/1) travel plans - May
    ... Just to let you know, the message above didn't have any attachments, ... will probably be to place the pdf file on a web server, ... URL used to retrieve the pdf file. ...
    (rec.pets.cats.anecdotes)
  • Re: Attached pdf has all pages blank
    ... or that the "web server" itself interprets it, ... and then displays it in your web browser? ... I use Eudora to download the message and attachments ... Or I use Firefox to go to my inbox on the server and open the ...
    (comp.mail.eudora.mac)