web Admin first Step
Just for web admin!
Comment Form
About this blog
Just for web admin!
Photostream
Categories
- AD-Union (82)
- Admin-News (43)
- Admin-Online (52)
- Admin-Report (42)
- Admin-Story (41)
- adsence (7)
- adsense (309)
- adsense account (202)
- adsense ads (99)
- adsense advertising (63)
- adsense alternative (28)
- adsense cash (100)
- adsense code (32)
- adsense content (72)
- adsense earnings (24)
- adsense ebook (79)
- adsense forum (26)
- adsense income (20)
- adsense keyword (62)
- adsense keywords (11)
- adsense make money (25)
- adsense marketing (22)
- adsense pay (19)
- adsense profits (19)
- adsense program (26)
- adsense ready (25)
- adsense revenue (7)
- adsense search (10)
- adsense secret (17)
- adsense site (18)
- adsense sites (19)
- adsense tips (7)
- adsense tool (9)
- adsense websites (15)
- Analysis-Research (98)
- ASP-NET (109)
- Blog-SEO (40)
- cash (331)
- CGI-perl (111)
- Comment-Report (97)
- Commercial-Economy (101)
- CSS (102)
- Database (107)
- Dreamweaver (110)
- Dynamic-Website (97)
- Experience-skills (107)
- HTML-Xhtml (107)
- Information-security (93)
- Internet-News (85)
- Javascript-Ajax (102)
- JSP-Java (98)
- Making-Experience (108)
- Master-story (91)
- money (337)
- Newsroom (93)
- Others (105)
- PHP-Mysql (95)
- Planning-profits (106)
- Product-Alert (98)
- SEO (196)
- Technology-Awakening (86)
- Venture-Guide (98)
- XML-XSLT (105)
- No comments
- Betting on Horse Racing and Managing Your Money – Part Three
- Low Fee Cash Advance Loans : Guaranteed Fast Cash
- Payday Advance Loans – Small Cash Assistance to Be Repaid by Next Payday
- How to Make Money Online Today – Your Ultimate Guide!
- Blogging to Earn Money – 3 Concerns You Must Consider
- 5 Most Profitable Types of Affiliate Marketing Websites
- Tips Why AdSense Decoded is So Good
- Google Desktop – Safe to Use
- Improve PPC Performance Using Negative Keywords
- How to Avoid Getting Scammed Online
Asp with hidden paths to achieve defense Daolian
In: ASP-NET| Comment-Report| HTML-Xhtml| JSP-Java| Newsroom| Others| Product-Alert| SEO| Technology-Awakening| Venture-Guide
23 May 2007If we know that a static document the actual path as : http : //www.chinahtml.com/download/mybook.pdf, if the server did not make any special restrictions set up, we can not painless download it! When mybook.pdf download website, how can we allow access to those who download the actual path? This paper on how to use Asp documents to conceal the actual download path.
<%
We in the management of a web document, can be extended from the same paper on the same directory, compared with a particular name, such as Fang pdf file directory the_pdf_file_s. Save the following code put to down.asp, his path to http://www.chinahtml.com/down.asp online, we can use http://www. chinahtml . com/down.asp?FileName=mybook.pdf to download the file , but those who download the file can not see the actual download path! In down.asp, we can also set up the need to download landing Download the source to judge whether the pages for external website, which can be done to prevent the documents Daolian.
Example code :
From_url = Cstr (Request.ServerVariables ( “H TTP_REFERER “))
Serv_url = Cstr (Request.ServerVariables ( “S ERVER_NAME “))
If mid (From_url,8. len (Serv_url)) then Serv_url “”
Response.write “illegal link! ” ‘Prevent Daolian
Response.end
End if
If Request.Cookies ( “Logined”) = “” then
Response.redirect “/login.asp” ‘needs landing!
End if
Function GetFileName (longname) ‘/folder1/f older2/file.asp=>file.asp
While instr (longname, “/”)
Longname = right (longname, len (longname) -1)
Wend
GetFileName = longname
End Function
Dim Stream
Dim Contents
Dim’”>
Dim TrueFileName
Dim FileExt
Const adTypeBinary = 1
‘”> = Request.QueryString ( “‘”>”)
If’”> = “” Then
Response.Write “invalid document name! ”
Response.End
End if
FileExt = Mid (’”>, InStrRev (’”>. . ” “) + 1)
Select Case UCase (FileExt)
Case “ASP”, “ASA”, “ASPX”, “ASAX”, “MDB”
Response.Write “illegal operation! ”
Response.End
End select
Response.Clear
If lcase (right (’”>. 3)) = “gif” or lcase (right (’”>. 3)) = “jpg” or lcase (right (’”>. 3)) = “png” then
Response.ContentType = “image/*” ‘right image files not emerge under contains dialog
Else
Response.ContentType = “application/ms-dow nload ”
End if
Response.AddHeader “content” “attachment; filename = “& GetFileName (Request.QueryStri Vi ( “‘”>”))
Set Stream = server.createObject ( “ADODB.Str eam “)
Stream.Type = adTypeBinary
Stream.Open
If lcase (right (’”>. 3)) = “pdf” then ’set pdf file types Contents
TrueFileName = “/the_pdf_file_s/” &FileName
End if
If lcase (right (’”>. 3)) = “doc” then ‘type set DOC directory
TrueFileName = “/my_D_O_C_file/” &FileName
End if
If lcase (right (’”>. 3)) = “gif” or lcase (right (’”>. 3)) = “jpg” or lcase (right (’”>. 3)) = “png” then
TrueFileName = “/all_images_/” &FileName ’set Image File Contents
End if
Stream.LoadFromFile Server.MapPath (TrueFi leName)
While Not Stream.EOS
Response.BinaryWrite Stream.Read (1024 * 64)
Wend
Stream.Close
Set Stream = Nothing
Response.Flush
Response.End
%>