Blog Entry: 3/25/2006 1:41:54 PM
Hello,
Sorry, I do not have any good ideas on this one...
Domain Name Masking can cause issues with quite a few things.
cwilliams38366.3136342593, Version 7 uses.. RC4
The upgrade process is described here in detail including a procedure to convert existing clear text passwords to the encrypted versions. (Your passwords will need to be clear text as the system shipped of course for the conversion to do its thing)
http://support.cjwsoft.com/code/info24.htm
It is also covered in the downloadbale docs
http://support.cjwsoft.com/code/moreinfo221-1.htm
Many people have done the upgrade without any issues and Version 7 is getting great feedback.
Should you decide to go with it there is upgrade pricing.
http://www.aspprotect.com/purchase_v7_upgrade_pricing.asp
,
[QUOTE=cwilliams]actually, passwords can be up to 75 characters long in ASPProtect.
the only requirement when entered from a non admin user is that they are at least 4 characters long.
what does MSAccess have to do with this ? Are you trying to convert and old system or something? I noticed you created and "old password" field in there ? Is there something I do not know about as far as what you are trying to do?
Passwords in version 7 are encrypted so I hope you understand all of that and realize you can not enter or change passwords right from SQL server. Also if you import info you must handle that accordingly and convert the passwords to encrypted format. [/QUOTE]
First off, I haven't imported anything from MS Access.. The only reason I mentioned it is cuz I thought initially it worked with Access and not SQL server.
I am not converting nor entering any data manually into the db, nor have I changed anything in the way the registration is made (don't know where the "Old password" has come from? thought it was a function you made?)
, I really need more information..
SQL or Access database ?
If Access are you using the newest version of the .mdb file
Is this a new item ?
Show me your connection string ?
perhaps the url to the site as well so I can look around?
things like that that will help me troubleshoot.
If any info is sensative send me a PM..
, Now I am having trouble using the log function.
I have checked the box in administration area for UseLogFiles. I have put the expected path for the LogFileDirectory in the box. I have modified the permissions for the anonymous web site user to modify this directory. However the log file does not get updated and there is nothing when I go to view the logs.
thx
, Ok i am having an issue with my other comp. I have spent ANOTHER 3 hours researching this one.... it WONT START THE IIS SERVICE!!!
I get this error:
The service did not respond to the start or control request in a timely fashion
ANYWAY---
I decided to use one of my client's hosts; which happens to be Network Solutions.
ANYWAY again-
I uploaded the whole thing there and they advised me they cannot do the explicit permissions on that _database folder. This is what they said: I would also would like to point out that ASP.NET applications and permissions do not extend to any other folder, other than the root, (/htdocs/), and the bin, (/htdocs/bin/) folders. Sub-directories and folder after bin and htdocs will not have ASP.NET permission (read or write).
If you could move or reconfigure your application to save all your code behind, include and dll files onto the root or bin folder, your application could work or possibly run as you would expect. Please have this done and retest your application. If and when you get a different problem or another error after doing so, please let us know, and we shall be happy to help you troubleshoot any problems that you may have.
There is a 'create database option' where i can create a database..create a dsnname, user name, password and have to specify the database file name. Once i do this i need to place the database file (aspprotectnet2002.mdb) in the /db folder within the root. I also tried this and made the appropriate change in the web.config but it STILL DOES NOT WORK. I AM PULLING MY HAIROUT WHY WONT ANYTHING WORK.
ALL THE FILES ON ON THE ROOT OF THE WEB HOST. I PULLED THE FILES OUT OF THE _DATABASE FOLDER AND DUMPED THEM ON THE ROOT. I CHANGED THAT ON THE WEB.CONFIG BUT ITS STILL LOOKING FOR SOME .XML FILE IN THAT _DATABASE FOLDER.
I'VE BEEN TRYING EVERYTHING AND IT SEEMS THAT I CANT USE THIS SOFTWARE FOR THE LIFE OF ME
, Attached is a SQL script to create the ASPProtect Database with the Option Pack Changes already applied. This lets you create the database in one step and you wont have to make the option pack changes as they are already there.
This only applies to people using MSSQL and doing a new installation.
This scripts are run via SQL Enterprise Manager.
You make a new database then run this script on it in query manager.
2004-06-14_180056_aspprotect_w_option_pack.zip cwilliams38152.7522569444, where is your site ? I'll taka a look
, I have an asp page that includes other asp pages via an include. for example:
snippet code: file name: collaboration.asp
<table bgcolor="#bed1e4" border="0" cellspacing="0" cellpadding="10" marginwidth="0" marginheight="0" leftmargin="0" topmargin="0">
<tr>
<td>
<!--#include file="../../../filetransfer/directory_listing2.asp" -->
<BR><BR>
<!--#include file="../../../filetransfer/upload.asp" -->
</td></tr>
</table>
I can add the code below to collaboration.asp and it seems to work,but I cant seem to figure out how to protect the other files such as upload.asp at the same time. -- can you help? - Note: as soon as I add the code below (and adjust the path) - I cant bring up the page.
This is the protection code I am using.
<!--#INCLUDE FILE="../../../../aspprotect/check_user_inc.asp"-->
Shirely
, ok... glad ya figured it out.
Yes.. for ASP server side code to run the page extension must be ".asp". I was gonna mention that but I guess I just didnt think anyone would do that.
no offense.. not everyone works with this stuff every day..
, Ok, I was not aware of this domain controller issue as I have never had a customer have their web server set up that way. It is not a common situation under commercial hosting, thats for sure.
http://support.microsoft.com/default.aspx?scid=kb;en-us;3151 58
seems it was some sort of bug that was corrected in the the 1.1 .NET framework involving no ASPNET account being created. seems there are lots of work arounds involving making new accounts and editing machine config files. I found quite a few google articles as well.
http://www.kbalertz.com/kb_315158.aspx
http://www.15seconds.com/issue/030115.htm
I actually should have said "the framework installed" not "asp.net"
So, in the meantime I am asking John Evans what he thinks about this and I am going to ask you what version of the framework you have installed ? ASP.NET Framework 2.0 is the newest and you definetely should be running at least version 1.1 and probably should upgrade to 2.0.
I do not know why other ASP.NET code you have works ok. Your other code may not be using the odbc driver dll the same way ASPProtect.NET does. There are lots of possible reasons. At the end of the day I think the basic issue here is still a low level configuration/permissions issue and it can be corrected from what I am reading. It just may require a bit of trial and error regarding local and domain accounts and editing the machine config files... etc etc
, I am converting the email over from CDONTS to CDO so it will run on my host 2003 server.
What files should I be concerned with? Under gallery_admin there is an email_user.asp and under the main gallery folder thier is an email friend. Is there an other email routines I should be concerned with?
Thank You for your Assistance.
Jeromy
,
I pull that crap on myself once and a while... or my
favorite is leaving a bootable CD in the drive and then wondering why the heck
the OS doesn’t come back up. I pretty much promised myself back in 2002 that I
would never mess with anything minor after 10PM. For whatever reason I always
start messing around trying to "fix" something and end up sorry...
Granted if it’s an emergency I am all for it, but I get dresses in advance
anticipating the practically inevitable drive down to the datacenter.
Good luck with that, I am sure you will be much better off
in the long run.
, let's try this... edit that page with a text editor like notepad...
Carefully replace any instance of "Cint" with "CDbl".. I may have missed some of those when testing the last time I edited the code.
, This is the error that I am getting when I try to add a banner...
[code]Microsoft OLE DB Provider for SQL Server error '80040e09'
EXECUTE permission denied on object 'sp_ASPBanner_GetZones', database
'aspbanner', owner 'dbo'.
/aspbanner/appinfo_inc.asp, line 67[/code]
also, when i go to the banners tab i see this in the banner list...
[code](3 Banners Found)
Microsoft OLE DB Provider for SQL Server error '80040e14'
Line 1: Incorrect syntax near '='.
/aspbanner/banners.asp, line 306[/code]
Help., Its still not there as labeled 'internet guest'. There's a 'guest' and a host of others. Is there a way to identify it as the proper guest account to use with ASPProtect?
Also, looking through support documentation, I see other possibilities it could be (http://www.powerasp.com/content/hintstips/permissions.asp). Is there a way of telling which the problem is and whether we use a dsn connection or not?
The error we are getting is
Microsoft OLE DB Provider for ODBC Drivers error '80004005'
[Microsoft][ODBC Microsoft Access Driver]General error Unable to open registry key 'Temporary (volatile) Jet DSN for process 0x1340 Thread 0x17a4 DBC 0x162becc Jet'.
/aspprotect/scripts/populate_config_variables_inc.asp, line 11
, I have no idea to be honest, I just like the way it looks 
Good deal on the remote install, just dont pull the old "hangman" move
shutdown the machine on yourself around 4AM. Otherwise you be getting
in the car and going for a drive LOL
, O.K. , I register myself as a user. No problem, Iget an e-mail saying account active. No problem. I click the link in the e-mail. No problem. I click sign in and get this message. Big problem!!
Microsoft VBScript compilation error '800a0411'
Name redefined
/aspprotect/config_inc.asp, line 15
Dim Address_Required,CDONTS_Installed,City_Required,Registration _Type,VerifyURL,Log_Off_Page
----^
cwilliams38456.0969444444, I would say that it isn't all that difficult using mySQL for the backend....the main thing is to make sure you set the primary keys for auto-incrementing in your database. Alos need to make sure that any DELETE SQL statements are formatted like this
DELETE FROM tblName WHERE tblField=SomeValue
and not
DELETE * FROM tblName WHERE tblField=SomeValue
The same holds true for using MSSQL
, Hi Chris,
I have a small problem, I have installed asp photo gallery pro on a hosted site, and after eventually getting them to modify permissions on directories it is essentially working, except that it won't delete pictures from an album. If I delete an album the pictures are left in the pictures directory, but the album is no longer displayed. If I then make a new album it is labelled incrementally... ie I had one album "album_ID_1", deleted it created a new album it is labelled "album_ID_2". I would have thought that the new album would be called "album_ID_1" ie taking the place of the deleted one. It seems to me that the delete album function isn't fully working either. My hosting comppany swears that the permissions on the pictures directory are set to full access for everybody. What have I done wrong?
Thank you
Nigel
, Yeah sorry you are right. It works for me
http://www.rottys.net/gallery/default.asp?CatLevel=2&Cat 1_ID=5
, Thank you for the response to my question. In the mean time if I can figure any workaround I will post it here.
, My server is Server2003. I could not find the folder settings you mentioned. I did find a iuser which I added as specified. I retried to perform an upload. Still same message. But it does move the JPG to the picture folder. So, part of it is working. , Thanks for your rapid responses, your support is excellent!
It may be best that I stick with html then. You mention that is stresses the Version 7 software, would the unlimited version perform any differently if I use multiple zones?
Also, if I do go with a single zone, would either program be able to make sure each banner is unique, or would there by duplicates for each page view?
Sorry to post so many questions in one day.
, Okay, thanks, I'm going to change the method tonight and see if it makes a difference
I'll report back
Dave
, There are problems with your sql server database then. It was not set up correctly.
The 1st problem relates to having "used stored procedures" checked in the settings page.. but not actually giving those stored procedure execute permissions which they need to run. That is something that must be done on the SQL enterprise manager side of things either by you if you are allowed or your hosting company.
If you can not get the execute permissions set on the stored procedures for the sql database user you are using then turn off that option in the settings page and try things without it.
The 2nd error I am not sure of at this point so correct the 1st issue and we will go from there. It could be another sql database issue (not created correctly) or it could be an asp code issue of some sort though I doubt that or other people would have had problems on that page as well. I also just tested it out and looked the code over and I did not have any issues here. , Protecting ASP Pages
To protect a page without using the Access_Level or Groups feature simply add this code to the top of that page.
Put this under the <%@ LANGUAGE="VBSCRIPT" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
This is an example of a File Server Side Include. You could also use a Virtual Server Side Include.
The following URL explains what Server Side Includes are.
http://www.powerasp.com/content/code-snippets/includes.asp
Now when someone runs that page they will prompted to login. They will not be allowed access to that page until they successfully logged in.
An example of doing this is provided in the "default.asp" file included in the root of the Password System.
Look at the source code with a text editor to see the working code. It is quite simple.
Protecting ASP Pages Using Access Levels
To protect a page using the Access Level feature simply add this code to the top of that page.
You simply specify the Access Level before the include file is called. In this example we are protecting the page with Access Level 4.
Put this under the <%@ LANGUAGE="VBSCRIPT" %>
<% CHECKFOR = "4" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
This is an example of a File Server Side Include. You could also use a Virtual Server Side Include.
The following URL explains what Server Side Includes are.
http://www.powerasp.com/content/code-snippets/includes.asp
Now when someone runs that page they will prompted to login. They will not be allowed access to that page until they successfully logged in as a Level 4 user.
Examples of managing Access Levels are provided in the "multiple_access_levels" folder included in the root of the Password System.
Look at the source code of the ASP pages in that folder with a text editor to see the working code. Again, It is quite simple to follow.
Protecting ASP Pages Using Groups
Please see the code generators in the admin are for the code to do that.
I have been working on this. 2Checkout is like the most confusing and worst payment processing company on the planet. There are things about that page I just don not understand as many times as I read through it.
Doesn't seem like this stuff is mandatory just yet. (I asked)
I should have something soon.
, How can I make so it goes to certain webpages if user enters valid username and password??
I suppose user enters its information on check_user_inc.asp page, and username and password are stored on SQL database.
Hi there, I am not exactly what you mean when you say "moved some of the include files to user"
are you saying you are moving files around ? I am not sure what you mean there.
It is an ASP.NET web application that you install locally on your development server and then use to connect to a SQL database whether remote or local.
It can do nearly everything enterprise manager can do.
I have tested it and it works great for me.
I am using the upload_post_VBSCRIPT.asp to upload the pictures. My concern is the security of this. For instance I've seen some sites get hacked by a user uploading a file (going through the same process) and ending up crashing the entire server.
I tried adding .jpeg to the end of a text file (filename.vbs.jpeg) and then uploading it, and the file was actually uploaded. Is this a potential problem?
It didn't fix it. Looks like I had the current code. I bought the system in mid-April. The version says 3-10-2005.
I do know that in the database, the password shows as " éG" but in the error code, it shows as " éG". The square character is missing.
Edit: well heck. It skips the square box here too. The password in the database puts a square box in front of the éG
, how would anyone recommend i go about setting a different expiration date for each group a user may belong to?, I have multiple zone banners displayed on a single page using the AspHTTP Component Method. Hi. Chris. I'm not a programmer of any sorts, so I am not comfortable plugging in the changes you suggested and not knowing for sure if it will "break something somewhere else". If the programmer tells me "you have been warned", its a pretty good sign its a no win situation. If you don't know, theres no way i can know.
I saw in the code where you mentioned the changes. I don't see where it mentions the last name is required either, but the bottom line is it does require it it the actual new user form.
Thanks anyway Chris. I'll figure something out.
The more details you can provide the better. Think of anything and everything and describe it.
SQL or MSACCESS... version of either
Server OS
Using Option Pack or not
Did you have your host set permissions...
