Blog Entry: 3/25/2006 2:36:24 PM
I know what is happening.. its the old single quote thing messing up the query string..
but it shouldnt be happening with the newer code as I fixed it.
If you like I can go in and reproduce/fix the issue. I can not think of any other way I can help you as other users have not reported the issue.
Chances are if it is happening in one situation it will happen again in the future.. it really all depends on the passwords being used and your encyrption key... other passwords may produce the issue even if the password is correct
basically once the password gets encrypted it by chance has a single quote in it... then it messes up the query
I take care of the situation by replacing the single quote with a double quote but it looks like you found a situation where that didn't work out
cwilliams38453.8921990741, yes, like it says it is expirimental
turn it off.. the banner system will run just as fast for the most part
or leave it on and an occasional user will see a permission denied error where a banner will be,
I pull that crap on myself once and a while... or my
favorite is leaving a bootable CD in the drive and then wondering why the heck
the OS doesnít come back up. I pretty much promised myself back in 2002 that I
would never mess with anything minor after 10PM. For whatever reason I always
start messing around trying to "fix" something and end up sorry...
Granted if itís an emergency I am all for it, but I get dresses in advance
anticipating the practically inevitable drive down to the datacenter.
Good luck with that, I am sure you will be much better off
in the long run.
it has been 3 days since I logged myself in under Admin, and all the user information on the User Activiy screen seemed to be gone.
is there any specific length of period it refreshes its user information??
It is refered to as the internet guest account but that isn't the actual username. The username is different for every machine. It usually starts off with "IUSR_" and then your machine name. "Internet Guest Account" is always the account's full name as labeled by IIS when it is installed.
If an account isn't listed you have to add it.
Click (add-advanced-find now) and it will list off all the user accounts on the machine
You can also click (add-advanced) and simply type in the account name or part of it.cwilliams38417.7186689815,
Some more tips:
If on a local machine you always just give the "everyone" account full control which is pretty much going to make anything work.
You can also go to computer management in your server's administrative tools and view all of the accounts and groups there under "Local Users and Groups".
<!--#include file="../Connections/connWINGAP.asp" -->
When I insert the aspprotect code it looks like this:
<!--#include file="../Connections/connWINGAP.asp" -->
and I get this error:
Microsoft JScript compilation error '800a03f7'
Unterminated string constant
/GIS/WCGIS/GISProtect/check_user_inc.asp, line 2
I think I understand that your code is written in VBscript and that is why it is not working. If this is the case, how can I switch to VB to execute your stuff then switch back?
you basically have to edit the html in the links in the various pages and remove them... some are in includes files
use a text editor and be causious / back things up before you remove links so you can revert back, either that or send me your encyrption keys and the exact password entered that causes the problem and I will try to reproduce the behavior here,
Just got back 10 minutes ago..
Missed plane yesterday because of traffic and the flight today was 3 hours plus 4 hours of driving
The fact that you are using Server 2003 is not relevant. I am very familiar with it and all my sites run on it.
The ASPNET account will be there by default once the .NET framework is installed. It wonít just show up in the list, you have to search for it like my article mentions.
That error really means exactly what it says. You have to give that account permissions correctly. ,
That's exactly what it was.
The site owner couldn't see their own ads because Norton was blocking anything with the word ad in it.
On another note: I changed the word 'ad' to 'listing' and got it to show even with Norton.
thanks!! the file took care of the extra slash. I also fixed the problem by modifying the permissions.,
yeah.. I cant say for sure.. as I have never really tried to get it working in xp pro.
Last time I actually used cdonts locally was on a 2000 box
I would do a google search on xp pro, smtp service, and cdonts and let us know what you find out.
All of our apps can use free 3rd part emailing components as well so maybe try some of those. Course you need a valid email server to connect to.
, OK, thanks..,
no.., not unless you come up with some clever way to handle it on your own
read 2nd to last post
The way ASPProtect ships it is designed to either be in http:// the whole time or https:// the whole time.... (there curently is no solution from me allowing going from one to the other), how would anyone recommend i go about setting a different expiration date for each group a user may belong to?,
Of course ASP.NET is and HAS been installed. I have been running asp.net scripts for years on it. I am not new to asp.net nor setting up the server or anything. ASP.NET is properly installed and works perfectly.
You are missing the fact i mentioned it is a DOMAIN CONTROLLER.
I have come across MANY articles ONLINE via GOOGLE that mention if it is a domain controller, for some reason the aspnet account is not there or gets deleted.
IN ITS PLACE GOES THE IIS_WPG ACCOUNT. IS YOUR SOFTWARE NOT COMPATIBLE WITH THIS ACCOUNT?
Is it possible to run ASP.NET scripts without ASP.NET not being installed? Because I have been running asp.net pages without any problem.,
I'm using the groups protect feature on my pages. None of them seem to close the session after clicking 'logoff'. I can tell because if I hit the back button and return to the group-protected page, hit 'refresh', the page refreshes, I'm not asked to log in again.
On the other hand, when I open a page that's protected by an access level and click 'logoff' (uses same logoff asp file to logoff), it seems to work fine - if I go back a page and refresh, it asks me to log in.
Just wondering - is anybody else having problems like this? Maybe I screwed something up in the few adjustments I made a while back. Any idea what it might be?,
Well. fontpage publishing is evil. That you have found out.,
Do not use it. It usually wont work right when running asp code locally and also at the server because of differences with the paths and virtual directory structure. etc etc etc
You can definetly use frontpage to connect to the web site live and drag and drop files into it/edit them... but the sooner you stop using the publishing feature the better off you will be.
Our home page is not showing up gives this error:
Active Server Pages error 'ASP 0126'
Include file not found
/Default.asp, line 246
The include file 'elib/articles/home_feature1.asp' was not found. ,
I checked through the code and could not find anything as well.
However, I do think it may be related somehow to the code as I get the messages popping up in the error log only after I have edited a banner.
If there is nothing obvious, I may just set my error log to filter and automatically delete this type of error. Not something I prefer to do.
Thanks for the quick response.
Otherwise the program is working very well and I'm happy with it.
Redirecting is not something ASPProtect does because you can
do that sort of thing using simple ASP redirects.
In all of these examples you are going to want to protect the pages you send these users to accordingly.
So that if they know the url they just cant go their directly without loging in.
This page will redirect admins or level 4 users to a certain page and anyone else to
<%@ LANGUAGE="VBSCRIPT" %>
If Session("Admin") = "True" or Session("Access_Level") = "4" Then
This page will redirect level 1 users to a certain page. level 2 users to certain page, and anyone else to
<%@ LANGUAGE="VBSCRIPT" %>
If Session("Access_Level") = "1" Then
ElseIf Session("Access_Level") = "2" Then
This page will redirect user "PistolPete" to a certain page.
<%@ LANGUAGE="VBSCRIPT" %>
If Session("Username") = "PistolPete" Then
then just make sure the page you send the user to to also checks to see if the user is the right user.... to make sure others users can't access each others pages
If Session("Username") <> "PistolPete" Then
Response.Write("You do not have access to this page.")
etc etc etc.... these code snippets should point you in the right direction..., I tried the iFrame method that you have shown, and it works great!!!!,
Thanks, I'll take a look.
maybe this is the issue...
do you realize that the descriptive name you give a group is not always going to be the same ID in the database ? The two are not related., When a logged in user with specific group rights tries to look at a
page that has different group membership requirements the Login screen
comes up giving them an opportunity to login with different rights to
view the page. If you log in again with your current user name
the same login screen returns with the added words something to the
effect of "Access Denied, you dont have group rights to this page...".
Perhaps what you named Group 1 is really group ID 3
You can tell for sure by generating protection code for group 1 and see what ID it tells you to use..
You also need to remember that you are testing this with different users and it is really easy to get confused so you need specifically log off using the log off page to ensure session info from the previous login doesn't show up and cause confusion when you log in with a different user... etc etc
in addition to logging off that way you may also want clear the session and application info via the code at the bottom of my article
and do that in between any user you log in as
The only way to get back to the previous page is to hit the back button
on the browser (there is not a back button on the denied page).
I would really rather not even present the "login again" screen to a
user but just have a custom page that says "access denied" of my own
design with a back button on it. Is this an option provided for
in ASPProtect currently? I did not see it in the admin section
settings tab. Is there a separate "login again" asp file that is
being used for this
group access deny message that I could alter, or does it always have to
be the login asp file?
Or would this require me modifying the check_user_inc.asp file around
line 356 to change this behavior (I don't want to screw up any other
Oh, PS. just a quick check...it looks like if a user is an
"admin" he automatically gets to see all group pages regardless of
which set of group numbers are assigned in his user account...is that
, Thanks for the install. After many hours I finally got part of the
system working. I can log in and log out as a user. My problem is I
want the pages
accesses by Members ONly. The database will contain the names of
the members and only they are allowed access, and no one else. I
tried Joe Blow to log in and it worked, the only thing is Joe was not
in the database and he should have been locked out and a page come us
saying something like "you are not a registered user, please complete
the membership application" and then link back to the root web,
I am also afraid of breaking the codes you provided thus far. I also
want the password protected pages in a sub-web of the root web.
This may sound like elementary stuff, but this newbie is having
constant trouble. I am also referencing books on ASP and Access
and VB and still come up with a dead end. Search the net and come up
with a few codes which are described as something I am looking for, but
dont want to add any thing like that for fear of breaking the whole
, Actually this was rather easy to fix. Once you restrict the permissions on the folder, open up IIS admin. Goto the selected folder, and right click/properties. Once there you modify directory listing and add defauly.asp to documents. This will provide an automatic load with you enter in the unmask route. ,
I can't seem to find the code where it limits the upload file size. I want to limit the upload size to 1.5 mg for all users. Also I've noticed that the 500 pix doesn't seem to work. As in if an image is bigger than 500 pix the script still uploads it. i am using Upload_post_VBSCRIPT.ASP.
Thanks, Because employees and sales reps might leave or go to work at competitors without our knowledge and we can't have them get an perm account so we need to implement some sort of expiry and then review their account with them., A nice addition for the listing script would be if the script would allow a "featured ad" or ads that would appear on the default page. ,
You are correct regarding what you noticed.. ASPBanner only allows one person to administrate. If if did what you are asking about it would probably cost more.
(you get the ASP source so if you really wanted that you could always add it on your own fairly easily, but it all depends on your skills)
AS for keyword advertising and different ads based on certain pages ASPBanner does not get into that. The main reason being performance as I built ASPBanner primarily as a performance banner rotation solution.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=144& ; ; ; ; ;PN=1
Like that thread says, you could make different zones for different conditions.. then surround the banner calling code with if else logic so a different banner zone was called under certain conditions.cwilliams38434.7100578704, from the import page in the admin area.
Regardless, if you really need something that has every bell and whistle. BanManPro is where it is at.
The import/export file must be tab delimited with no text qualifiers. The 1st row containing field names and the following each being a new user. To create your own import file it must be in this exact format. To find out what field names and their order are simply create an export file using ASPProtect and take a look at it. You can also import that text file into MSACCESS. , no worries from me. As with most software projects, i tweak the
heck out of them and then have to make a big decision about whether or
not i even want/need to upgrade.
Is there a way to protect other virtual sites on the server that are not under the default web site considering people may have different websites running off one server? I get the following error:
Parser Error Message: Cannot use a leading .. to exit above the top directory.
Line 1: <%@ Register TagPrefix="aspprotect" TagName="checkaccess" Src="../../protectpage.ascx" %>
Line 2: <aspprotect:checkaccess level="4" groups="null" runat="server"></aspprotect:checkaccess>
The way the application ships there are no password confirmation areas anywhere ? Please be more specific as to what you have done and if any mods are involved ?, it might.. I might be wrong though as I guess that could still be an issue with access not being able to keep up.. and then the xml parser just isnt getting the page it is requesting in time,
If you are talking about one of the MODS please realize they are not supported. http://support.cjwsoft.com/code/moreinfo459-1.htm
Even though they are not supported I look them over pretty closely and I know of no issue like you mentioned so I would suggest re-downloading the MOD. Perhaps you got a corrupt download or file.
In addition to that I just noticed the </href> you have in there.. man that is some scary stuff you came up with.. that may appear to work and make a link but it is not correct. Each link will work but never truly be closed.
That is just not valid proper use of the anchor tag.
You make a link in html like so
<a href = "somepage.htm">somepage.htm</a>, Am very interesting in purchasing ASPProtect, but am curious as to whether anyone has had success/failure with Network Solutions "standard windows hosting" solution? Thought I would ask just in case someone has had recent experience. thx, ,
Then your surrounding each link with <span lang="en-us"> </span>
Not sure why ?
upgrade pricing is here
what is different
the changes to make it work with MySQL were vast to say the least
more on that from an old thread
just please remember use of MySQL is just not supported,
I can assure you it works well as I have people using it
Timecard Entry: 3/25/2006 2:36:24 PM
I had to get out of here.... nap in the tanning bed and pick up greasy food to eat at my desk, Checked voice / emails & relayed messages. Reading over SONET info. & Reading DSL info for 5/16 class., travel back to watertown 360 miles, enter Insurance bills, , painted some more, travel time to lowville/carthage--total miles 56, 60 miles back to watertown, E-Mail, Voice-Mail, returned Bell's call to close ticket., answering phone, taking signups, callbacks from voicemail, checked emails, incident report, cancellation of inovices, quality checked sign ups. , did some radlogs. did a signup and a setup. helped a user with Netscape, entered bills checked statement balances and filed, now this timecard, BLUEMAXXAAB-NY - fixed email form, was using old method, never updated., Interview Allen Storey, Working on streaming server for z93., upgrade quickbooks on pcs and fix andreas computer , Talked to Kelly about user manual etc., went to the chamber to set people up on email, then fixed some minor troubles they had, Applebee's, team meeting. prep for NY trip., Yet again... still Realtor.com issues with house-now... thye gave me an excel spreadsheet full of issues I need to address, finished Ingles store front (doostore.com, billable), NORTHERNHEALTHNET.ORG Did new graphic layout transferred to html.. updated and added all new materials.. Need to discuss project with Tim Lasek to complete changes in asp pages... , same as above, Jumpin` J. here w/updates for Froggy 97, CIZ93, and WTNY790., Tlaked to Kevin from the LA Racing team- set up sponsorship also emailed michelle about american dreams sponsorship, Ks Motel - revisions to add for vacation guide, Career Day at Lowville, Nortel Passport training, Develop ASP mail scripts for Pin Source, Newsgroups/Email/Installing speakers,