well asp.net has objects like SqlParameter which shield you against Sql
Injection etc...
unfortunately since you cannot use those objects in classic asp you can't do
that...
so you are left to manually do that (ie check the passed params and log them
if needed)
hope this helps...
--
Regards,
HD
Once a Geek.... Always a Geek
"Aaron" <ku*****@yahoo.com> wrote in message
news:u0**************@TK2MSFTNGP12.phx.gbl...
asp.net 1.1 has protection against XSS and sql injection. i'm also running
an asp site on the same server, is it possible for the server to
automatically detect those intrusion methods for my asp application?
thanks