Password Retrieval System

CDO.Message.1 error '80040213'

The transport failed to connect to the server.

/aspprotect/scripts/emailing_subs_inc.asp, line 174

This is running on Windows 2000 server.

Any ideas?

Warren

also.. the log out page shouldnt really need this
but you can try adding this to it where all the other ones are set to nothing..

<% Session("Groups") = "" %>

Chris, I'm having problems getting this to work. When I plug in the redirect URL and then try to load the web page, the Flash ad never loads successfully - just its black background in the 468 x 60 space. Here's an example of what I'm seeing:

http://www.innovationtools.com/Articles/ArticleHeadlines.asp

Just keep refreshing the page until the black rectangle appears. And here is the code I've loaded for this flash ad:

<OBJECT classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000"
 codebase=" http://active.macromedia.com/flash2/cabs/swflash.cab#version =4,0,0,0" ID=banner WIDTH="468" HEIGHT="60">
 <PARAM NAME=movie VALUE=" http://www.innovationtools.com/aspbanner/aspbanner/banner_re direct.asp?Banner_ID=25">
 <PARAM NAME=quality VALUE=high>
 <PARAM NAME=bgcolor VALUE=#000000>
 <embed src=" http://www.innovationtools.com/aspbanner/aspbanner/images/ba nners/mindmatters_innovation3.swf "
quality="high" bgcolor="#3CBDCD" WIDTH="468" HEIGHT="60" TYPE="application/x-shockwave-flash" PLUGINSPAGE=" http://www.macromedia.com/shockwave/download/index.cgi?P1_Pr od_Version=ShockwaveFlash">
</OBJECT>

What am I doing wrong? By the way, I'm using the standard version of ASPBanner. Not sure of the version, but it dates from about 2002.

yes, How can I have fixed size height and width image without distortion. Is there a component that I can use or how can I change the existing code.

yes, unless its ratio matches

how could it not be ?

Please keep questions like this in the forums... thx.
there is no need for this to be a private message

-- Previous Private Message --
Sent by : eeye
Sent : April/29/2005 at 2:19pm


If I choose fixed width and height is the thumbnail image going to be distorted?

-- Previous Private Message --
Sent by : cwilliams
Sent : April/29/2005 at 1:17pm

that is not possible unless you rewrite the code.

You onlyahve the two options we give in the config file for thumbnails

fixed width and height all the time

or

fixed width / dynamic height



-- Previous Private Message --
Sent by : eeye
Sent : April/29/2005 at 1:07pm

Hi William

One more questions for you. is there a way to make sure that all the thumbnails are the same size without distorting the images (in the thumbnails). Or if a picture's height is bigger than its width is there to create the thumbnail such that the height of the orginal becomes the width of the thumbnails and vice versa.

Basically I just want the thumbnail pictures to be in a perfect row with all the picture heights the same and all the pic width the same.

Thanks

Sean

It seems that if a user attempts to access a page that is not in their access level or they do not have the group permission they are redirected to the login page.  Re entering their ID generates an eror and they cannot go back to the pages they are alowed to access.  Is there a way for them to simply be blocked and return to the previous page or to a defined page so they can continue using the site?

thankyou 

You can't do that. ASPProtect 7 does not work with ASP.NET.

It is a classic ASP application. As the web site states it can only be used to protect ".asp" pages written using vbscript.

ASP and ASP.net are completely different animals.

Thats why we have a .NET version.
http://www.aspprotect.com/more_info_net.asp

Alternate Method to call banners from non ".asp" pages.

<iframe src ="http://localhost/aspbanner/aspbanner/aspbanner_inc.asp?Ban nerZone=4" width="468" height="60" frameborder="0" marginwidth="0" marginheight="0" scrolling="no"></iframe>

Be sure to delete the space in the BannerZone variable above. I am not sure why it is doing that in this post.

You can try calling the banners in an simple iframe like so.
This method should work much better than the javascript method because users with javascript turned off will still see the banners. You also will not have any of the limitations the javascript method has. Iframe is now supported by most recent browsers so it is now a good solution. Here is a chart that shows which browser versions support iframe.

Be sure however to edit the height and width values accordingly as that is very important.

also.. every once in a while I get some nervous person concerned about security... and the pros and cons of having parent paths enabled.

etc etc etc

so let me add this bit of info..

I don’t know what your hosting company will say because it is an iffy topic and those that understand it have a hard time explaining it to someone who doesn't. Also usually the hosting company doesn't have a clue except they heard it was a security risk.

I have activated both activity and log files. The directories exist on my server and don't give any errors.

When I check the activity tab, some times there are a number of items in it.  Other times, there is only my login info.  From what I can see, it is supposed to show the last 50 items of activity at all times.  Am I missing something?

Also, when I click on the log file tab, there is no file or information to see.  Is there something I need to do beyond activating it in the settings area and making sure the directory has write permissions?

Thanks.

Just got back 10 minutes ago..
Missed plane yesterday because of traffic and the flight today was 3 hours plus 4 hours of driving

The fact that you are using Server 2003 is not relevant. I am very familiar with it and all my sites run on it.

The ASPNET account will be there by default once the .NET framework is installed. It won’t just show up in the list, you have to search for it like my article mentions.

http://www.powerasp.com/content/new/windows_2003_server_and_ permissions.asp

It's not normal at all. My guess you accidently edited the code in a bad way.

(thats the same code the every guestbook in every application I sell uses including ASPGuest which gets downloaded for free about 50 times a day)

No one has ever said it acted funny.

I would do a default installation with the original code somewhere and see if the problem occurs. If it does I can take a look.

In the meantime I wouldn't be running that as it is probably using up massive processor time because of whatever is wrong with it. 

Thanks for the info.  We'll do as you suggest.

NPA

(Password Expiration Mod) for ASPProtect Version 7.x

This Advanced Mod requires decent knowledge of Databases and working with ASP. I originally wrote something like this for a customer on a custom project. I then took the time to re-write all the code from scratch so it could easily be plugged in to the current version of ASPProtect as an option. All in all this mod took me over 15 hours of time to develop and will save you a ton of time & money if you were planning on writing something like this on your own. Some parts of this were so difficult to get working that I would never have written this code if I was not paid to do so. (The encrypted array that rotates through the last 12 passwords was quite frustrating to get working)


 
The price on this is 19.95. I am not incorporating this into the base product because it makes things more complicated and isn't for everyone.

Purchase Page

Security is a big concern and making your users change their password every so often is a good idea. Keeping track of previous passwords they used and making them choose something they haven't used before takes the concept even further.

This Mod will add a password expiration date to the application. When the password expiration date is hit the user must confirm their old password as well as pick a new one before they can log in again.

There is a new password expiration directory where they must choose a new password that has not been used before. The new password must be confirmed during this process. (It remembers 12 old passwords the way it is coded) The old passwords are stored in the database in an encrypted array.


Directions:
Back up your existing ASPProtect installation.

Add two new fields to the "ASPP_Users" table in your database.

For an MSAccess Database

Password_Expiration_Date (Date_Time Field)
PreviousPasswords (Memo Field)

For a MSSQL Database

Password_Expiration_Date (smalldatetime)
PreviousPasswords (nvarchar 160 characters)

once that is done

Copy all the new ".asp" pages into your site.


Edit the "PasswordExpirationURL" variable in the "check_user_inc.asp" file

It needs to be the full URL to to the "change_password/default.asp" file


Now edit the "change_password/processchange.asp" file

There are 3 variables you can edit.

PageSentToAfter = "http://localhost/aspprotectmods/password_admin/default.asp"
PassMinLength = 4
PassMaxLength = 8

The "PageSentToAfter" is where you want them sent to after they change the password. It can be whatever you like.
If it is a protected page they should automatically get logged in with the new password they just changed to which is nice.

The other two values should be obvious.

That's it...

Just remember the password change thing is not used in the admin area...
You could easily add code for that on your own though by looking at the the password expiration code I added to the publics "check_user_inc.asp" file

Also:
You will see a new field to edit on the user edit screen for the Password Expiration of course. 

In a way your questions are confusing to me, but here is some information regardless.



Using Active Sever pages you can not protect entire folders. It is simply not possible. ASPProtect is Active Server Pages scripts so it can only protect individual ".asp" files.


If you are concerned about customers downloading the access database..

best practive is to store it in different folder name than it came in
best practive is to give the database .mdb file itself a different name
best practive is to change the password on the access database
best practice is to store it in a directory that is not part of your web if possible.. many of the better hosting companies have it set up so you actually can do that

the more of these things you can do the better..

And if you are really worried about security you should use a SQL Server database which nobody can download from your website under any conditions because your data lives in the sql server and unless they get the username/password to it they can not access it.

Making progress. I have made the appropriate settings and now I have the option to upload.  When I upload, I get the following message:

 "Your upload did not succeed, most likely because your browser does not support Upload via this mechanism.

Your browser must support a standard called RFC 1867. Please check with your browser vendor for support of this standard"

I am using IE6 XP SP2.  I also am using DUNDAS UPLOAD, ASPIMAGE.

I think I set permissions correctly bot not positive.  I have given all auth to everyone for the database etc.

That would not happen unless you added a target to the login form or you're code had a base target set.

Like so..

<base target="_blank">

I would really need more detailed information. It's nothing the system does the way it ships under normal circumstances. For example you shouldn't see that behavior in any of the example protected ".asp" pages

that is unless you have something odd going on with your browser settings or you made changes to the login form or code around it causing it. (or you are using frames and dont have some of the targets and what not set correctly)

My guess is that it has to be something you added or did, but I really need to know more to offer more than that.

The application automatically generates all the code for you for each method of calling banners. It does this on the zones screen.

If you are using flash it also possible that the actualy flash file is what is causing things to slow up.

It really all depends... it could also be server resource related

using sql server or access.. ? etc etc

all important details

If logfiles do not get created it is most likely one of 3 things

1. invalid physical path specified
2. permisssions
3. filesystem object is disabled on the server

that path doesn't look correct to me for a live professionally set up server but only you or your server admins can know that for sure

you will not get any errors when things arent perfect.. just no physical logs

RecentActiveUsers and RecentPageRequrests are not related to the stored logfile feature.. Recent Activity is a different thing

A question.  Does this apply to all areas of the application.  I have recently uploaded 50 photes.  But when I look at the site from the url, I have X where the picture should be.  Now, if I look at it though the localhost, I see the pictures perfectly.

The sql script creates aspgalleryuser

dataconn_inc.asp out of the box indicates aspgallery as the user.

GalleryConnectionString = "Provider=sqloledb;Data Source=127.0.0.1;Initial Catalog=aspgallery;User Id=aspgallery;Password=temp;"

Access Database Password

By default all of the Access Databases we give out have a default password of "temp"

The Default username that and Access database uses is "Admin" but you should not be concerned with that except in your connection strings.

The default password for the Access Database can only be changed using Microsoft Access to do so. If you have security concerns it would make sense to change the password. The help system built into Microsoft Access best explains how to do that.

ok, I am home.. missed flight.. just got home an hour ago.

lets see.. I really need more info...

For starters are you using the delayed stats feature ? that is expirmental and could cause that problem

Dear Support Team

I have read and Installed your v8 banner software

exactly as explained on XP pro which contains other asp working app.

I have problems with the " Application " and " Session" in your scripts

things that make the iis fall dead.

also in the file asp _unlimited_config.asp

you have exlained that every thing must be kept without the "" marks.

well i get http 500 error cause of it.

Please advise

Thanks

Ran

Thanks for your rapid responses, your support is excellent!

It may be best that I stick with html then. You mention that is stresses the Version 7 software, would the unlimited version perform any differently if I use multiple zones?

Also, if I do go with a single zone, would either program be able to make sure each banner is unique, or would there by duplicates for each page view?

Sorry to post so many questions in one day.

I noticed that is grabbing the wrong URL for some reason. Even when i mouse over the URL its somehow getting the users sub directory. How.. i dont know... when i erase that users in the url it works perfectly.

I am looking at the code in the .vb file and i dont see anything that could be causing it to do that... but then again i am no programmer LOL

Its obviously kicking in that users subdirectory somehow... what are your thoughts?

All fixed and working

Thanks

Okay, here's the problem.  The out of the box sql script creates a catalog called aspphotogallery and a user id aspphotogalleryuser.

The out of the box GalleryConnectionString tries to access a catalog called aspgallery and a user id aspgallery

'*** GalleryConnectionString = "Provider=sqloledb;Data Source=p600laptop;Initial Catalog=aspgallery;User Id=aspgallery;Password=temp;"

I see the readme.txt has been corrected but the line in dataconn_inc.asp still needs to be changed.

Chris, if there is no way to change this, I understand. I just though maybe it might be possible and I can't find out if i don't ask.

Thanks Chris.

Let me know.

-john