Hi all -
I would like to do something like this:
<!--#include file="C:\dbutils\dbConfig.asp"-->
Where the directory C:\dbutils is OUTSIDE of the web directory and not
accessible by a client web browser.
The reason I would like to do this is in case somehow ASP processing
gets turned off in IIS. Since "dbConfig.asp" contains a
username/password for the database, I don't want this file to somehow
get sent back to a client browser as plain text.
Two questions:
1) is it possible to use an include file that is outside of the web
directory?
2) is there even any way that ASP processing can be turned off?
perhaps not explicitly, but maybe via malicious code or virus?
thanks in advance,
Jon LaRosa
jlarosa at alumni dot brown dot edu