473,408 Members | 1,743 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > asp / active server pages > questions > static files and asp

Join Bytes to post your question to a community of 473,408 software developers and data experts.

static files and asp

I have a site that will be displaying static files to clients. Each client
will have their owb directory locked down through NTFS permissions.
Currently I have a Client folder in the wwwroot then that client folder has a
folder for static files in it. How much more secure would it be if I moved
it out of the wwwroot and used a virtual directory?

Thanks
Mike
Jul 22 '05 #1
5 1375
I guess I should have said these files are being accessed through fso, and I
will need the ability in asp to upload and create folders. That's all fine I
just wonder about what is the safest. Clients can't know who our other
clients are.

Mike

"Mike D" wrote:
I have a site that will be displaying static files to clients. Each client
will have their owb directory locked down through NTFS permissions.
Currently I have a Client folder in the wwwroot then that client folder has a
folder for static files in it. How much more secure would it be if I moved
it out of the wwwroot and used a virtual directory?

Thanks
Mike

Jul 22 '05 #2
storing them outside the path but then adding a VD pretty much negates any
security gain. I mean if you already have the NTFS permissions set properly
and the site configured its the same, as far as what it would take to get to
the file, whether its a direct sub folder or one outside the www path

--
Curt Christianson
Site & Scripts: http://www.Darkfalz.com
Blog: http://blog.Darkfalz.com
"Mike D" <Mi***@discussions.microsoft.com> wrote in message
news:22**********************************@microsof t.com...
I guess I should have said these files are being accessed through fso, and
I
will need the ability in asp to upload and create folders. That's all
fine I
just wonder about what is the safest. Clients can't know who our other
clients are.

Mike

"Mike D" wrote:
I have a site that will be displaying static files to clients. Each
client
will have their owb directory locked down through NTFS permissions.
Currently I have a Client folder in the wwwroot then that client folder
has a
folder for static files in it. How much more secure would it be if I
moved
it out of the wwwroot and used a virtual directory?

Thanks
Mike

Jul 22 '05 #3
Asked a similar Q in the IIS NG........ see if the reply I got helps you

http://surl.co.uk/?1234

Original URL:
http://groups-beta.google.com/group/...fc48f8a1a82297

--
Regards

Steven Burn
Ur I.T. Mate Group
www.it-mate.co.uk

Keeping it FREE!

"Mike D" <Mi***@discussions.microsoft.com> wrote in message news:22**********************************@microsof t.com...
I guess I should have said these files are being accessed through fso, and I
will need the ability in asp to upload and create folders. That's all fine I
just wonder about what is the safest. Clients can't know who our other
clients are.

Mike

"Mike D" wrote:
I have a site that will be displaying static files to clients. Each client
will have their owb directory locked down through NTFS permissions.
Currently I have a Client folder in the wwwroot then that client folder has a
folder for static files in it. How much more secure would it be if I moved
it out of the wwwroot and used a virtual directory?

Thanks
Mike


Jul 22 '05 #4
On Thu, 3 Mar 2005 13:37:01 -0800, Mike D
<Mi***@discussions.microsoft.com> wrote:
I guess I should have said these files are being accessed through fso, and I
will need the ability in asp to upload and create folders. That's all fine I
just wonder about what is the safest. Clients can't know who our other
clients are.

Mike

"Mike D" wrote:
I have a site that will be displaying static files to clients. Each client
will have their owb directory locked down through NTFS permissions.
Currently I have a Client folder in the wwwroot then that client folder has a
folder for static files in it. How much more secure would it be if I moved
it out of the wwwroot and used a virtual directory?


Probably not much. You couldn't access them directly by URL, but
you'd still need the permissions and those arewhat really protect
them. Authenticate users and only allow authenticated access and
you're pretty safe. Until someone guesses the account/password. Or
changes companies and takes the info with them. :)

Jeff
Jul 22 '05 #5
Thanks all for your replies. I guess I am not as far off track as I had
thought. When you put data out there and it's your a@@ if it is compromised
you try and think of everything.

Mike

"Steven Burn" wrote:
Asked a similar Q in the IIS NG........ see if the reply I got helps you

http://surl.co.uk/?1234

Original URL:
http://groups-beta.google.com/group/...fc48f8a1a82297

--
Regards

Steven Burn
Ur I.T. Mate Group
www.it-mate.co.uk

Keeping it FREE!

"Mike D" <Mi***@discussions.microsoft.com> wrote in message news:22**********************************@microsof t.com...
I guess I should have said these files are being accessed through fso, and I
will need the ability in asp to upload and create folders. That's all fine I
just wonder about what is the safest. Clients can't know who our other
clients are.

Mike

"Mike D" wrote:
I have a site that will be displaying static files to clients. Each client
will have their owb directory locked down through NTFS permissions.
Currently I have a Client folder in the wwwroot then that client folder has a
folder for static files in it. How much more secure would it be if I moved
it out of the wwwroot and used a virtual directory?

Thanks
Mike


Jul 22 '05 #6
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

3
GAlib, Static Lib, ...?
by: Zeljko A. | last post by:
Hello to all... So... I have a 'little' problem with the GAlib library of genetic algorithm components. It is as follows: the GAlib package is given as a set of .c and ..h files and an user has...
C / C++
9
Why STATIC keyword is needed?
by: Bryan Parkoff | last post by:
I have noticed that C programmers put static keyword beside global variable and global functions in C source codes. I believe that it is not necessary and it is not the practice in C++. Static...
C / C++
4
What is the scope of a 'static' variable?
by: Gery D. Dorazio | last post by:
Gurus, If a static variable is defined in a class what is the scope of the variable resolved to for it to remain 'static'? For instance, lets say I create a class library assembly that is...
C# / C Sharp
1
Static variables in httphandlers/httpmodules
by: Steen Tøttrup | last post by:
This is what I'm doing: I'm using Httpmodules and Httphandlers to control access to files (images, movies, etc.), but have run into quite a problem when several files are being requested at the...
ASP.NET
12
Forward declarations to static variables
by: fox | last post by:
How do I (portably) make a forward reference to a static (I mean file-scope) variable? I've been using "extern" for years, for example: extern int x; int foo(void) { return x++; }
C / C++
5
Why not generate static pages instead of dynamic?
by: pittendrigh | last post by:
There must be millions of dynamically generated html pages out there now, built by on-the-fly php code (and jsp, perl cgi, asp, etc). Programatic page generation is transparently useful. But...
PHP
14
header files revisited: extern vs. static
by: John Goche | last post by:
Hello, The extern keyword can be used in C and C++ to share global variables between files by declaring the variable in header file and defining it in only one of the two files. For example,...
C / C++
14
How to write a library with a static object?
by: Jeroen | last post by:
Hi all, I've got a question about writing a library. Let me characterize that library by the following: * there is a class A which is available to the user * there is a class B that is used...
C / C++
1
Wrong static initialization order
by: Sandro Bosio | last post by:
Hello everybody, my first message on this forum. I tried to solve my issue by reading other similar posts, but I didn't succeed. And forgive me if this mail is so long. I'm trying to achieve the...
C / C++
9
need some help in serving static files inside a wsgi apps
by: Tool69 | last post by:
Hi, Until now, I was running my own static site with Python, but I'm in need of dynamism. After reading some cgi tutorials, I saw Joe Gregorio's old article "Why so many Python web...
Python
0
BarryA
Navigating the Data Structures and Algorithms (DSA)
by: BarryA | last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
Algorithms / Advanced Math
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
General
0
Changing the language in Windows 10
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
Windows Server
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Online Marketing
0
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
Career Advice
0
Couldn’t get equations in html when convert word .docx file to html file in C#.
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and...
C# / C Sharp

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!