RE: File downloads
From: Pedram Rahimi (PedramRahimi_at_discussions.microsoft.com)
Date: 02/13/05
- Next message: Richard: "Re: input file form tag"
- Previous message: Adrienne: "Re: How to resize all images sizes and coordinates of the images on resize browser"
- In reply to: Pete: "File downloads"
- Messages sorted by: [ date ] [ thread ]
Date: Sun, 13 Feb 2005 02:55:01 -0800
..
1- You can make a Field in your Access Database in OLE object type .
And then insert files in database not in a path or folder .
of course it is not a method with good performance .
Authentication and Authorization will do from database .
2- Make a folder outside wwwroot and rename it to "uploads" then
copy all secured files in it . Now for addressing use this code
<a href='<% Server.MapPath("../uploads/yourfile1.zip") %>'>Link</a>
When user click on link must enter Username and Password that
made in Windows .
..
"Pete" wrote:
> I have an Access db with usernames and passwords set up on a web site. Upon
> signing in to a password protected asp page which contains a link to an exe
> file, the user clicks the link and the browser asks to either Open or Save
> the file.
>
> All this works fine, but if the user simply types the full path to the file
> in the address bar, the browser again asks the user to either Open or Save
> the file - thus bypassing the security.
>
> Is there a way to prevent this "back door" method of accessing the file or
> would I have to set up an FTP mechanism. If so, How would I go about this?
>
> Many thanks.
- Next message: Richard: "Re: input file form tag"
- Previous message: Adrienne: "Re: How to resize all images sizes and coordinates of the images on resize browser"
- In reply to: Pete: "File downloads"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
