| Blog News Main Page |
NEWS FROM 2006-03-25
Blog Entry: 3/25/2006 2:48:44 PM
One last thing..
This is bad
there are .asp files in there people can run that you dont want people running..
u should delete the asp files in there or turn off directory listing...
CJW, Ok, I tried what you suggested but the program won't let me leave the
date area on the banner ad blank. I reset it to a date in 2010.
I deleted the Level 1 Access note in the notes area.
I then attempted to access the banner stats using the correct info and
the right link. Again, got this message:
INVALID Username & Password
Username HAS EXPIRED
Any ideas? Should I just delete the whole account and start fresh?
ASPBanner.NET was discontinued about 14 months ago. It is no longer supported in any way because quite frankly the classic ASP version is faster, more stable, has more features, and is a lot easier to install and get running.,
If you PM me via the forum you are welcome to a copy of the current ASP Unlimited Version. It can serve banners to any type of page extension. All you have to do is ask for a copy.
Whether or not your existing ASPBanner.NET database is exactly the same structure I do not know, but I believe it is. You should compare the two if you plan to keep using the old database and make any neccessary changes so the old database has the exact same structure as the new version. If there are any differences they are very few.
this error really does not mean anything specific
Your browser must support a standard called RFC 1867. Please check with your browser vendor for support of this standard"
If you get an error its real weird that the file is being uploaded.
Generally if you get an error during upload it is because of one of these 3 things
Invalid physical path specified
Unsupported upload method chosen
See my article on XP and permissions
many people dont do their permissions right on XP Pro and that article covers everything,
its a text file you just edit it with notepad.. if ya mess it up ya put an original copy back in
no biggie either way
jump in there..
I just showed ya exactly what to change.. its a no brainer man
This is simple source code. It's meant to be edited and hacked.
The only reason I warn you is so you can't blame me later on if it effects something
I am just trying to help
If ya dont like that solution why not just use periods for the first name field.. or a dash or something... then nobody will really see it
or maybe store the company name in the first_name field
seems like clever things to try without changing the code..
You need to make sure you created the SQL database using the SQL scripts we provide and that no errors occur whatsoever. That is extremely important. You must use our SQL creation scripts.
Then, when you create the user you need to go back to that user and make sure you check the admin account and save that user again. (many times when setting up a system for someone I find myself forgetting that step and then I have to go back in and check the admin box for the user I created.)
And of course create the user from the ASPProtect admin area web interface. Do not add the user to the database manually because you will have no way to enter the password correct as it is encrypted. And do not change the encryption key after making the user/.
It would also be wise to check the SQL server database at every step to make sure the user info gets created and that all the field info looks correct for the most part.
You also want to be sure to specify SQL as the database type side the connection string info as the SQL directions go over
a remote sql server should not an issue.
thats really all I can think of right now,
You are correct regarding what you noticed.. ASPBanner only allows one person to administrate. If if did what you are asking about it would probably cost more.
(you get the ASP source so if you really wanted that you could always add it on your own fairly easily, but it all depends on your skills)
AS for keyword advertising and different ads based on certain pages ASPBanner does not get into that. The main reason being performance as I built ASPBanner primarily as a performance banner rotation solution.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=144& ; ; ; ; ;PN=1
Like that thread says, you could make different zones for different conditions.. then surround the banner calling code with if else logic so a different banner zone was called under certain conditions.cwilliams38434.7100578704,
Regardless, if you really need something that has every bell and whistle. BanManPro is where it is at.
Some users have reported an error during the registration process.
Here is what I believe is happening.
When you register you get sent a validation email that has a link in it that looks something like this.
That link can only be clicked on once which will activate your account.cwilliams38089.6248842593,
If you somehow run that link more than once you will get a message telling you there was an error.
I think some people are double clicking on the link they get sent and running it more than once.... or clicking on it again after registration is complete. It probably happens very fast so they never see the success screen.
Either way, if you can login to the forum nothing is wrong and you are already activated.
In my search for a product to administer my banners I came across ASPBanner. In my site: http://www.lovenest.co.il
I have 3 locations for banners:
In the top section a big banner and a small banner
At the bottom a serie of 5 banners.
My question: is it possible to place a list of banners (let's say 8 banners) and randomally pull 5 banners each time the page loads?
If yes please explain in detail.
A correctly configured Microsoft SQL Database is critical to the correct operation of the ASPBanner system.
Table & Field settings must be exactly the way we set them in the database creation scripts provided with the ASPBanner system.
Below are screenshots of the design view settings for all the tables used in the ASPBanner system in case you want to double check them
In addition to the settings above each table has one field that is a primary key with an auto increment of one
In the screenshots above each of those fields has a yellow key next to it.
If the field does not have yellow primary key icon on you just right click and the option to make it one appears.
The SQL column settings for each one of the primary key fields must be set as follows
In addition to these settings the SQL scripts provided with the system auto populate the Banner_Users table with two users. This is very important because without the Admin user the scripts add you wont be able to log in to the ASPBanner system as an admin.
I was able to get it all figured out. Thanks a lot for your help, I really appreciate it. I ended up copying the database with the password to the directory and used the user/password connection code and it works great. I believe it was related to that but I cannot be sure. Thanks again!,
when you say "we have set up to use the Subscription services exclusively for all new members ",
I am sorry to have to ask this again but what does that mean exactly ?
how was that accomplished ?
The reason I say this is because when a subscription is created by a user through the normal channels.. meaning they went to the paypal subscription directory and either started a new account or found their old one to start a subscription with.. either way the PayPal Subscripber ID that paypal assigns is added to the database for that user and the expiration date is set to null.
Now, that being said the function that sends expiration emails to users will NEVER send an expiration to a user that has info in their PayPal Subscriber Field in the database. I just double checked that.
So that is where I am confused ? How did all these users get set up to use subscriptions and not have the PayPal Subscriber ID field popluated in the database ?
Seems to me the only way this could happen is if you set some stuff up manually and the PayPal Subscriber ID for each user never got put in the database. That and the expiration date didnt get set to null.
Again, I am sorry to keep asking this but it just seems to me that something else must be going on that I am not clear on regarding how you upgraded these people to use subscriptions.
In the end I think the answer may be to manually make sure each old user now using subscriptions has their PayPal Subscription ID set in the database as well as their expiration date from before set to null.
Turn off "Show Friendly HTTP error messages"cwilliams38084.7513773148,
If you are getting errors with your ASP application go to Internet Explorer and make sure this setting is unchecked. Having this checked can cause a generic error to be displayed in you web browser when ASP code encounters an error. This generic error message doesn't really help you fix the problem. Having this setting unchecked will usually result in a more detailed error message and the line number the error is occurring at, thus giving you a good clue as to where the problem is within the ASP code. If detailed ASP error messages have been disabled at the server level this setting will make no difference.
Does ASPprotect support Paypal's Website Payments Pro option, where a user can use a credit card directly on a web site, without passing to paypal.com?
thanks... a review at aspin is always appretiated ...no one ever seems to do a review and they help me out a lot.. the aspprotect admin area header has a link
You are right, there are NO entries in the "PayPal_Subscriber_ID" field at all. Any way of fixing this?,
I don't fully understand what you are explaining ... the part about showing a user but not working???? but if you PM me the details I will glady go into your live webserver and see if I can get it working., download the free version...
check out this tutorial...
If your application can post to the page and provide all the form variables needed to log in it may work out for you..
You'll have to try it out... all the form variables needed are in that login form example.
Basically you'd be posting to a protected (.asp) page..
and providing the following for the most part.. how your app creates it post data is on your end...
<input type="hidden" name="Status" value="Checkem">
<input type="text" name="Username" value="Yourusername">
<input type="Password" name="Password" value="YourPassword">
As an alternate scenario...
Now, by default the "check_user_inc.asp" file is looking for posted form data... for security reasons it is not looking for querystring info..
If you change this bit of code in that file
Username = Replace(Request.Form("Username"),"'","''")
Password = Request.Form("Password")
Username = Replace(Request("Username"),"'","''")
Password = Request("Password")
It will then grab either form or querystring data...
Meaning you wouldn't necessary have to create a true post to the page with form data. You could just access the page via a querysting like so
Of course that introduces security risks as the username and password would be passed in plain text over the net
Another option is...
You can also make a copy of the "check_user_inc.asp" page called whatever with those modifications just to use in pages you need your little application to post to... thus reducing the security concerns a a bit as the rest of yoru site could still have its pages protected under the normal scenario.
I hope this answers your question... I havent really ever tried any of this but that is how I think it would work... ,
ok, here's a test page:
user: test, When a logged in user with specific group rights tries to look at a
page that has different group membership requirements the Login screen
comes up giving them an opportunity to login with different rights to
view the page. If you log in again with your current user name
the same login screen returns with the added words something to the
effect of "Access Denied, you dont have group rights to this page...".
Our company just got new computers, so everyone here has the same set-up, all Dells, all about 3 weeks old, all Windows XP.
But I did realize after reading your post that I am using Firefox and everyone else was using IE. When I used IE, I was able to duplicate the error.
But, alas, I am unable to resolve it. Client will be using IE, no doubt.
The only way to get back to the previous page is to hit the back button
on the browser (there is not a back button on the denied page).
I would really rather not even present the "login again" screen to a
user but just have a custom page that says "access denied" of my own
design with a back button on it. Is this an option provided for
in ASPProtect currently? I did not see it in the admin section
settings tab. Is there a separate "login again" asp file that is
being used for this
group access deny message that I could alter, or does it always have to
be the login asp file?
Or would this require me modifying the check_user_inc.asp file around
line 356 to change this behavior (I don't want to screw up any other
Oh, PS. just a quick check...it looks like if a user is an
"admin" he automatically gets to see all group pages regardless of
which set of group numbers are assigned in his user account...is that
at this point I would say install a fresh untouched copy in the web in a different directory and lets see if it acts weird from scratch.. the we can go from there.. I dont know what is going on, Glad your getting the hang of it.
no difference as far as that goes. It is just different ways to reference the server side include file and it's location on the server cwilliams38457.6019675926,
This first one may be an obvious one, but is it only .asp files that I can protect as in no HTML files.
Can the program be set to protect my whole https directory contents (though the answer to the last question may have bearing here - there are html files as well as .asp in there) as in http://secure.mydomain.com
Thanks in advance,
thanks.. it was not taken as a complaint.
I just wanted to explain
When you said you tried using the web version of sql manager. Did you use the microsoft one I link to here "just curious"
, question 2 is answered best here
Ok, got it. Didn't know if there was something already set up for this that I was missing.
>>I should also mention that the paypals scenarios used in ASPProtect can not be tested using PayPal's sandbox.
>>Also test using two real PayPal accounts and on a live setup. (You'll allowed two paypal accounts) then you can log into the other and refund the transctions and of
course it makes sense to use low amount like 1 cent and what not.
Yeah, been messing around with
that. Got everything going except the return page which I can't
do until the site is live.
>>Also, I'd love to see what you came up with with the
integration. I have been working on it here as well and took it in a
different direction as I plan to sell directions for it as an add-on
Ok. Will email you with a username and password for access to the site once it's live.
Sounds like a great add-on for ASPProtect!
You edit the web.config file that came with ASPProtect.NET.
You find this tagcwilliams38454.4368055556, yea that info gets updated once an hour,
<customErrors mode="RemoteOnly" />
you change it to this
<customErrors mode="Off" />
If you have a different web.config file in your root I suggest you make sure the tag is set to off there as well for troubleshooting sake
If done correctly you will get a detailed error
It's basic low level ASP.NET stuff really and does not have anything specific to do with ASPProtect.NET.
You also need to make sure your web is set up correctly for ASP.NET and that the correct web.config's are firing..etc etc
On second thought guys, it would must easier to change the code using modulus as follows:
<% If PicIndex mod 6 = 0 THEN %>
<% End If %>
This will end each row and create a new row after each 6th picture. It'll be must easier code to work with and change. This code must be placed in the PicIndex For Loop.
If you have any questions, JPortnoy@Checkernet.com, Not sure what you mean about the path to the IIS files being
wierd...what else should it be? The wf directory is the root of
the aspprotect stuff for this project.
I assume the permissions need to be read, write at least. I was
looking at the permissions dialog from a file explorer and I see a web
sharing tab and a security tab. I look at the security tab but I
am not really sure which type of user I am looking for to add and give
permissions to so that I can get it right. Maybe that is not the
right place to set the permissions....
Sorry to be "windows challenged" but I am not super familliar with all
the different places to set various permissions for OS vs. IIS. I
looked in the "Internet Services Manager" and browsed to the logfiles
directory and looked at its permissions...is that the place to set
things up? I see a "directory" and "Directory security"
tabs...which is the important one? I made sure "write" was
checked and went to the directory security tab and enabled anonomous
access....still no logs are showing up. Restarted server a bunch of
times to make sure it took the permission settings. I logged in
and out correctly and incorrectly to see if a log would be generated
but no luck.
The physical path to the logfiles directory is set correctly in the setup tab in aspprotect... sorry to still be baffled.
How do I know if the filesystem object is disabled on the server?? I can copy and paste things in there...
Well. fontpage publishing is evil. That you have found out.,
Do not use it. It usually wont work right when running asp code locally and also at the server because of differences with the paths and virtual directory structure. etc etc etc
You can definetly use frontpage to connect to the web site live and drag and drop files into it/edit them... but the sooner you stop using the publishing feature the better off you will be.
Advertising ?? oh really., Hi, lets start with about when did you purchase and download the application so I know what version of the code you have.,
It was named that because that way if you already have a login.aspx file for whatever reason it does not interfere which is a good thing. It has nothing to do with advertising.
Next off you never mentioned having an issue with it saying aspprotect in it. I am EXTREMELY clear about what I support and do not regarding ASPProtect.NET. If you are upset because I didn't tell you exactly what to edit and change in visual studio.net and hold your hand you are out of line. My god, I sent you to like the best and most detailed tutorial on how to setup and use the application with VS.NET that could ever exist. That took forever to put together. I even responded to your post on Christmas on a Sunday. I doubt too many companies would have responded on Christmas.
More importantly than that when you purchase code from CJWSoft you are purchasing digital source code and there are no refunds. Every single page in the CJWSoft family states that very cleary in the footer. I do not appretiate it when someone threatens a chargeback and as far as I am concerned anyone that does that is commiting a crime of theft. I also do not appretiate smart comments saying it's "obvious" etc etc
If you wanted to strike a nerve with me you did. If you want to commit a crime and be a thief that is your business as well. Obviously I can not stop that and the credit card company will take your side. I work very hard on the source code I sell and my policies on everything are VERY clear.
Calling the credit card company ??
nice, real nice
you actually dont touch any of those
UploadDirectory = CmdGetConfiguration("UploadDirectory")
They get set from the config table in the database which gets edited in the admin area.
I am talking about the settings area in the admin area of the applicaton., nice idea. id be interested to see your modifications for ideas,
Every setting there is descibed in detail. You get there and change serttings there via the web browser and by logging in as the admin.
Log in to the online demo as admin and check out the settings area if you are confused.
thats not good.. its a web server configuration issue of some sorts ?
post is a common method for forms.. if it is not supported it is something you should ask the server admins about.
Is this a windows based web server running true microsoft ASP because that error is usally associated with non windows IIS based web servers from what I can see by doing a google search ?
ASPProtect only runs on windows servers running IIS and True Microsoft ASP.
My guess is your web server is running Apache Unix or something like that.,
It's real easy actually if ya sniff around the source code.
ASP is so easy to (work with/edit) even if you dont know any code.
edit "save.asp" with a text editor
If Request("First_Name") = "" Then
ErrorMessage = ErrorMessage & Server.URLEncode("You must enter a First Name.\n\n")
If Request("Company_Name") = "" Thencwilliams38326.5102662037,
ErrorMessage = ErrorMessage & Server.URLEncode("You must enter a Company Name.\n\n")
From looking at that save code I dont see where Last_Name was required. The only name I saw required was a 1st name.
Also.. making the First_Name not required may break something somwhere else. I dont think it will but it might. You are warned.
I'm having another problem-hopefully it's a quick fix.
it tries to go to a page: default.aspx
Server Error in '/' Application.
The resource cannot be found.
Description: HTTP 404. The resource you are looking for (or one of its dependencies) could have been removed, had its name changed, or is temporarily unavailable. Please review the following URL and make sure that it is spelled correctly.
Requested Url: /default.aspx
When i log in as admin from the aspprotectadmin/default.aspx that works fine...
where should the user be sent when they log in? Am i supposed to specify that or is it automatic? Why isnt it working for me? I dont believe i changed any settings that correspond to that either
one last thing... if you did an upgrade from a previous version and didnt do the whole database field thing right during the upgrade process as stated here you could have trouble.,
Meaning you should check your new database with the field structure of an unmodified new database and make sure all field names match up perfectly.. especially paying attention to the username and password fields
One last thing..
If you did an import via text file and didn't import all the fields ASPProtect needs you could possibly have problems as well.. though I don't think this relates to the timeout so it probably is not the case
Just got back 10 minutes ago..
Missed plane yesterday because of traffic and the flight today was 3 hours plus 4 hours of driving
The fact that you are using Server 2003 is not relevant. I am very familiar with it and all my sites run on it.
The ASPNET account will be there by default once the .NET framework is installed. It won’t just show up in the list, you have to search for it like my article mentions.
That error really means exactly what it says. You have to give that account permissions correctly. ,
ya, that firewall could mess that up.,
just edit which ever style include you are using
(with a text editor)
it will be one of these depending on your settings.. and they are located in the "scripts" directory
find this section of code and remove the part in red
If Last_Counter_IP <> Request.ServerVariables("REMOTE_ADDR") Then
Set CmdUpdateCounter = Server.CreateObject("ADODB.Recordset")
cmdTemp.CommandText = "SELECT " & tbl_label_albums & ".* FROM " & tbl_label_albums & " WHERE (Album_ID = " & Album_ID & ")"
cmdTemp.CommandType = 1
Set cmdTemp.ActiveConnection = ConnGallery
CmdUpdateCounter.Open cmdTemp, , 1, 3
CmdUpdateCounter.Fields("Album_Counter") = (Album_Counter + 1)
CmdUpdateCounter.Fields("Last_Counter_IP") = Request.ServerVariables("REMOTE_ADDR")
Album_Counter = Album_Counter + 1
Timecard Entry: 3/25/2006 2:48:44 PM
little chat with Tim Badour about the status of everything, traveling to Hogansburg....found router in boot mode....corrupted flash.......fought with randy's laptop for an hour cause his nic was being a pain.....setup the router so we could get out and get a new flash load....flashed it.....tested it.....rebooted it again....came up clean..........driving back, voicemail/emails while downstairs. Creg System, email cancellation info, worked on changes on Reed & Benoit web (reedbenoit.com, billable, complete), entered bills, worked on designing and uploading store front to Ingles site (doostore.com, billable), didnt really take a lunch, but what the heck, i'll put it in here anyway......mmm false nourishment......mmmm, General, NorthCountryNow.Com - Making requested changes/additions, search query from main page, etc.., nortel engineers meeting, called expiring users., Not too busy, Answered phone calls and worked with other tech related stuff, and took a look at the emonitor machine to see if I could get wav's to play in MSIE., shit hits fan, slower - teched calls, Out of the office, More help w/ Davidson Chevrolet, read and sent emails, TICC marketing materials for ribbon cutting..., Very busy. Checked radlog maybe once or twice. The calls were non-stop with questions about everything. The wait time at 1130am 20-25 minutes, Soft Router Documentation, show andy whats needed to move off all of NT Server "webserver" sites to "pluto" , Answered phones, called other customers back with RadLog Problems., go over billing with Melodey for collections of design and hoisting fee, Picked up mail and opened. Posted accounts, credit card authorization, coupon referrals, ans. phone, and customer inquiries., worked on newsletter, helped techs w/calls, Trained with Matt again and helped him look over his code for his cancel site that he is doing, General admin duties, at JCC, same as above, reported RNA's on 4911 to BEn,