Security

In classic ASP there is no any encrypt function. But you can use this useful source code to encrypt any string data using MD5. MD5 encryption is a one-way hashing algorithm. MD5 is a great advantage because it is speed and easy to use.

Single quote could be very harmful and broke down your all application. Any one can easily inject any damageful code into your sql script. To combat the threat of SQL injection, escape the single quotes using the Replace function.

Security issues became more damageful if you're not protecting your web forms. Following example is a good idea to protect our ASP pages against SQL injection attacks. This small ASP code secures and validates all information coming from your forms.

This simple tutorial is intented to learn you how it is possible to prohibit access to certain page. A technique is to check the referrer of the visitor : if he come from a page of your web site let him in, else display a default message ...

The random password function will return a password with letters and numbers. You pass the number of letters and numbers you want and it returns the alphanumeric password.

This digs for your PRIVATE information such as your IP behind your firewall. This article is a harmless way to perform a leaktest that could give someone access to your private information.

This Blog site is packed with techniques free code download, articles all focusing Microsoft Technologies.

This page offers lots of information and tips to protect your scripts against common attacks.

In this article we are going to try and provide some ideas for your to reduce those calls to the help desk. In this project we created a help desk portal, this portal pretty much has a main page that you can go to download patches, virus definition files, and manage account unlock information. Calls to the help desk for unlocking locked accounts accounted for a large percentage of calls, so in order to streamline the process we created an application that tied in with the intranet user portal. Part of the application design was adding additional fields to the user preferences table called "pin_number", "question", and "answer". As part of the design of the application, we wanted the user to provide a personal identification number, and answer a challenge question that they previously configured in the application. This article is not going to go into every detail of creating the application, but we will provide the ADSI code and some design ideas for creating your own self-service account unlock application....
(show more)
(show less)