RE: Restrict FileSystemObject to it's virtual dir
From: FKeller (FKeller_at_discussions.microsoft.com)
Date: 10/26/04
- Next message: FKeller: "RE: Restrict FileSystemObject to it's virtual dir"
- Previous message: yb: "creating web and ftp access in university environment"
- Next in thread: FKeller: "RE: Restrict FileSystemObject to it's virtual dir"
- Maybe reply: FKeller: "RE: Restrict FileSystemObject to it's virtual dir"
- Reply: Miriam Green: "RE: Restrict FileSystemObject to it's virtual dir"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 25 Oct 2004 17:59:04 -0700
Hello Dallo
I wonder if you got it to work with the desired security?
I did see that there is a very ingenious ASP-script going around. Even on
big providers you can go with it to all drives, even C:\WINNT and \SYSTEM32
and read, change, delete or upload whatever you want. So as I did see even
big providers have not the needed security and are in danger. How did you
implement the security that users cannot go out of there root? Hackers event
use file upload possibilities in websites to upload the tool and use it then.
Thanks for help,
Fritz Keller
"Dallo" wrote:
> Hi everybody,
> i've to configure on a single win2003 machine a lot dinamic web site.
> I'd like to protect each site from interference of other sites scripts that
> uses, for example, filesystemobject method.
> In other words, i dont want asp script using FSO of a site can access,
> modify or delete files on other sites.
> Is there a way to restrict FSO to it's virtual directory?
>
>
> tnx to everyone
> :)
>
>
>
- Next message: FKeller: "RE: Restrict FileSystemObject to it's virtual dir"
- Previous message: yb: "creating web and ftp access in university environment"
- Next in thread: FKeller: "RE: Restrict FileSystemObject to it's virtual dir"
- Maybe reply: FKeller: "RE: Restrict FileSystemObject to it's virtual dir"
- Reply: Miriam Green: "RE: Restrict FileSystemObject to it's virtual dir"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
