Blog Entry: 3/25/2006 4:56:24 PM
No luck...this is the message
Return To Import / Export Screen.
Active Server Pages
error 'ASP 0113'
Script timed out
/members/aspprotect/password_admin/upload_post.asp
The maximum amount of time for a script to execute was exceeded. You can change this limit by specifying a new value for the property Server.ScriptTimeout or by changing the value in the IIS administration tools.
, I know what is happening.. its the old single quote thing messing up the query string..
but it shouldnt be happening with the newer code as I fixed it.
If you like I can go in and reproduce/fix the issue. I can not think of any other way I can help you as other users have not reported the issue.
Chances are if it is happening in one situation it will happen again in the future.. it really all depends on the passwords being used and your encyrption key... other passwords may produce the issue even if the password is correct
basically once the password gets encrypted it by chance has a single quote in it... then it messes up the query
I take care of the situation by replacing the single quote with a double quote but it looks like you found a situation where that didn't work out
cwilliams38453.8921990741,
Hi,
You see, an include file is no different then a link to an image or graphic. The path to the include file must of course be valid. That file isn't in the same directory as that page so you get an error.
You simply need to make the call to the include file valid.
See my article on server side includes.
http://www.powerasp.com/content/code-snippets/includes.asp
You should also look at some of the provided example pages and see how the paths to the include files are done.
You can also use a virtual include if you figure out the page for that. See my article for the difference between a file include and a virtual include.
The code generator in the admin area shows examples of both but depending on your site structure the paths may need to be slightly edited.
Server Side Includes are a fundamental part of using ASP and they are used a lot. Once you understand how include files are used you will think it is the simplest thing.
More articles on server side includes
http://www.w3schools.com/asp/asp_incfiles.asp
http://www.4guysfromrolla.com/webtech/faq/Beginner/faq6.shtm l
http://www.minwar.com/24
, More Info on Simple File Sharing
http://www.practicallynetworked.com/sharing/xp/filesharing.h tm
http://www.theeldergeek.com/quick_guide_to_simple_file_shari ng.htm
http://support.microsoft.com/default.aspx?scid=kb;en-us;3040 40
, I guess i am not being clear as to what i am trying to do. As far as the event thing... lets hold off on that for now. It seems Chris has answered my question and i am on my own for that one...
As far as the log in goes: I went to that site you mentioned;www.CafePress.com to see if they had what i was talking about. and they do. Notice on the bottom of the page it says "sign in to your account"
I want that option on my home page where users can sign in to go to their account. It will either take them to a page where they can update their info, or it will take them to a protected page. Pretty much instead of posting a link on the site to say... click here to go to members.aspx and have it return an "access denied" the user can enter their info from the main page and be automatically re-directed to that members.aspx page.
I know how the viewstate works and i also know what that returnURL thing does..pretty self-explanitory.
Hopefully that makes things easier. I just want a user to log in from the homepage and be redirected to either a protected page or their account page...
(as does that cafepress website)
,
it has been 3 days since I logged myself in under Admin, and all the user information on the User Activiy screen seemed to be gone.
is there any specific length of period it refreshes its user information??
, Hi,
No, only ".asp" files can be protected. It is the nature of Forms Based Authentication when using web based scripting technologies whether those scripts be ".cgi", ".asp", ".php", or whatever.
To protect entire direcotries at once you really need to run your own webserver and use NTFS permissions and user accounts..... or if something special is installed on the server there may be ways to do it as well. That usually isn't going to happen under a shared hosting account but there are special authentication products for such a thing that some hosting companies do purchase and allow their hosting customers to use.
Using aspprotect we do give working examples of ways to stream and partially protect images and downloads while a user is logged in to an ".asp" page.
Also, any ".htm" pages can simply be renamed to ".asp" if you need to protect them. Links to each other need to be updated of course because of the extension change.
In my opinion the truth of the matter is most high end sites use Forms Based Authentication with scripts. Not directory protection as it is fairly primitive/old school as well as sometimes being confusing for the users of the site because of how the login window from the server often gets stuck behind the browser.. etc etc
If you have a lot of pages in a site that you need to add protection code to then if can often be helpful to use a good Multiple file search and replace program to carefully add the protection code to the top of the source code of the pages. There are even multiple file search and replace programs that can rename extensions which can be helpful for large sites.
For images and graphics you want protect you have to do some work and set up and intelligent system for yourself.
Lastly whether you use https:// or not is no concern to ASPProtect as it works the same under https:// as it does under http://
, I am trying to import a file, and I get this error:
Microsoft VBScript compilation error '800a03f9'
Expected 'Then'
/aspprotect/password_admin/upload_post.asp, line 6
If Session("Admin") <> "True"
-----------------------------^
Any suggestions on how to fix it?
Thank you.
, Hello,
If you see that when doing a view source then that code is not running.
I will need to go into your site and look as something is very wrong on a low level and I have no more ideas.
PM or email me the info and I will figure out what is going on.
I'll need ftp or frontpage access to the site.
I'll also need to know the urls for the asprotect system as well as the page you are trying to protect.
CJW
cwilliams38229.7996064815, I am really starting to get the hang of your
software. It seems to me, you have thought of everything a person could
possible want. Before I try to tackle
setting up Pay Pal subscription payments is there really any difference
between a file include and a virtual include statement? Is one more
secure than another?
, it's ok
one step at a time and at each step testing things.. then when you mess something up you can figure it out a lot easier
cwilliams38456.1106018519, In addition to that I just noticed the </href> you have in there.. man that is some scary stuff you came up with.. that may appear to work and make a link but it is not correct. Each link will work but never truly be closed.
That is just not valid proper use of the anchor tag.
You make a link in html like so
<a href = "somepage.htm">somepage.htm</a>
http://www.w3schools.com/tags/tag_a.asp
Then your surrounding each link with <span lang="en-us"> </span>
Not sure why ?
, Hi Chris
After turing off the delayed stats feature the internal errors have stopped and it still serves banners, although I havent checked the logs yet. I will and post any errors.
I left my test page up last night at say 11pm serving 4 banners of different sizes rotating every 15 seconds, now at 9am the page is just displaying 1. If I refresh the page they all reappear.
Regards
Colin
, My ISP uses ASPSmartMail. The email confirmation works except when I try to register an AOL user the server returns an error 500.
, Can ASPClassifieds display the ads by city?
I have a web directory that lists websites and companies by city. Is it possible to have specific ads shown to the user depending on what city they click on? For example, only ads in New York would be shown to users that have already clicked on that city in my directory.
thanks,
, That would be great.
I am sure you know that many virus that are sent via email have the same property. (double extension). The code can be executed even though Windows identifies them as simple text files etc.
Thanks again
, (FREE) Nov 23 2005 Update Files
If you purchased ASPProtect Version 7.x before Nov 23 2005 then you can download these Update Files.
(These are non-critical updates.. only update if you want the described changes below)
These updates do the following..
- Make the Tabs in the Admin area move up and down as you navigate around so they look more like tabs used in a file cabinet.
- Updates the import/export process so the tab delimited text files created now store the passwords in plain text instead of encrypted. I have been thinking about this one for a while now and I think it is better this way as it was confusing a lot of people. If can also kill the whole process if by chance the encrypted output of a password contains a line break of sorts. There is no way to deal with that scenario so this is way the import/export process is going to work from now on. This also means you should be VERY carfeful about leaving export files lying around as they will have the passwords in them.
- Updates the "expected_paths.asp" in the data folder because the paths it was generating had an extra "data/" in it.
- Updates the users page so it will not show the import/export link if you have not entered a path for the export files in the settings.
- Adds an Activity Tab if using the Activity Tracking features instead of the links it used to put on the users page that most people didn't see.
To install these just copy them in over the old files.
Now of course back up your existing files so can revert back if there is a problem or you do not like the changes. If you made any custom changes to any of your pages use your head and realize that copying these in over your existing files will overide any custom changes you made. (that is your business, I am just warning you)
2005-11-23_163025_ASPProtect_v7_11-23-2005_update.zip
, I'm using ASPimage and have the maximum width set to 320 in the settings. Also using SAFileUP ver. 4.0.
Files upload okay, and the script displays a confirmation that the image was resized to 320, but the actual image uploaded is displaying full size rather than reduced to 320.
Also, the thumbnails are not displayed in the Picture Manager. Would indicated ASPImage is not working or the script is not communicating with it.
Suggestions?
lancem38326.9070486111, Ok.. glad you got it working., expiration dates are not used in aspprotect's database when signing someone up using PayPal subscriptions because the PayPal system keeps track of all of that and will automatically send posts to the approtect system if a user needs to be deactivated for not paying or for whatever reason.
As you will notice in that thread about subscriptions the paypal signup data you use for the person determines their membership pricing and details..
http://support.cjwsoft.com/forum/forum_posts.asp?TID=186& ;PN=1
Basically the system takes care of everything.
PayPal takes care of everything.
However you want to look at it.
cwilliams38446.6609953704, Hello,
no default setting for something like that... what your thinking about doing is on the right track I'd say
, Say, is it possible to get something to whack every totally inactive account? Preferably joke ones that nobody every actually logged on with.
I'd want to have it delete the account if the following conditions were met:
1. Active = NO
2. Counter < 1 or is a null value
3. Access <1 or is a null value (some people may have logged on and let their accounts expire, so they may want to log back in again with the same info)
I suppose an advanced version of a mass delete tool would allow the admin to select different parameters, but there would DEFINITELY need to be a "Are you sure? REALLY REALLY SURE???" step in there to make sure you didn't toast your database without being stupid twice in a row.
If I knew ASP code, I'd write it myself. I don't, so I make a pitch for a new feature... 
cwilliams38456.0980671296, I would check out this article for starters... aspprotect is very similar to asp photo gallery and so are a lot of the page names.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=49& PN=1
Jeromy, You should have access to that page.
, I am running into problems with the import function. I have 25 photos loaded into the import folder. The page see all of the photos. But after I click on the import process it takes me Picture Manager with no pictures loaded. I have hit the refresh button, but there is nothing there. dr_bones38394.676412037, I recently upgraded my ASPclassifieds from MS Access to SQL. The application launches, I can browse existing catagories, etc. but when I try clicking on the login, guestbook, register or accessing the classifieds_admin, I get the HTTP 500 - Internal server error. Guessing this must be a folder or file permission issue? Have tried changing IUSR permissions but nothing helps.
Please advise.
Thanks, lancem
, really all depends on the sql connection string you are using and the names of your sql user you are using...
you really havent described very much..
I'd double check all of it.. something is wrong
cwilliams38325.8892824074, If you have messed up the admin account or forgotten the admin password you generally should open up the database manually and add a new account or see what the old account is.
In version 7 however you have another option. Go through the installation instructions again. Specifically the part where you use the "get_me_in.asp" page to get back into the admin area by pasting in the password encrpytion keye you are using from your config file. , not anything built into the app... it would be done with client side javascript if you wanted to look into it... my client side javascript skills are ziltch, enjoy the bar.. drink one for me.. cause that was the problem..
, do you have the url path to the registration page set correctly in the settings cause not having it there would do that ? , you summed it up perfectly... everything you said really
As for the banner software custimizations.. you could just make another folder with a modified admin area (little tweaks here and there so the person logged in only controls their own banners) You'd probably want to add an approval process so nothing they did went live unless you really really trust them. That wouldn't be that hard either.
I always planned to do it someday but I just never have time.
cwilliams38436.2124884259, Well. fontpage publishing is evil. That you have found out.
Do not use it. It usually wont work right when running asp code locally and also at the server because of differences with the paths and virtual directory structure. etc etc etc
You can definetly use frontpage to connect to the web site live and drag and drop files into it/edit them... but the sooner you stop using the publishing feature the better off you will be.
, This is what "John Evans" of CJWSoft has to say on the matter...
"I think that’s pretty much impossible. If the server sees a .JPG or .JPEG extension why in the world would it go and try to read it or do anything with it.
I believe there may have been some issues with Outlook and Outlook express that made it look like a vbs script sent as an attachment was actually a JPG because someone found an exploit in those programs and it would appear as if double extension files were one thing when in fact they were not.
Having a real time virus scanner on the server (which any good host will) should also catch anything infected being built on the server drives as the file uploads. Always worked for me and I had a lot of people uploading ZIP files on winxptheme.com at one point. Many had viruses in them although I suspect it was totally innocent on the end users part. Some people didn’t even know they had a virus on their rig.
Fact is anything is possible but I think chances of getting a virus or being hacked in some way from this sort of upload are really slim."
cwilliams38447.0602083333, Well you can put a link on all your pages that links to the login page?
modify the code in the login page so the return page is members.aspx or
whatever you need and thats it?
I dont see your point? probably because I understand how the program works and your not 100% up to speed on how it works.
, [QUOTE=cwilliams]
It should be released sometime late May 2004 or early June 2004 but no gurantees as I am pretty busy right now with some projects.
There will be upgrade instructions and it should be a fairly easy upgrade.
[/QUOTE]
Like I said no guarantee... I have a lot of things going on... it might not even be finished till the end of July... customers will always be able to get it for the difference in price
You have the version listed on the site when you purchassed it.
Version 3.0
cwilliams38167.6469328704, (Password_Email_Confirmation_Mod) for ASPProtect Version 7.x
This will change the basic registration pages so that the email address and password entered must be confirmed when signing up. This eliminates the auto generated password during signup.
Some may prefer it working this way.
Directions:
Back up your existing ASPProtect installation.
Copy the two new files into your "users" folder
"register.asp"
"add_new_account.asp"
2005-12-01_182201_Password_Email_Confirmation_Mod.zip
, Well I still haven't gotten it to work yet completely. I tried to import the users again and it imported some, but timed out again. Trying to log in takes forever...ready to jump back on this one?, no, that only applies to random pictures and stats..
The issues you are talking about usually relate to issues created by switching back and forth between a local install and a live server install and not being careful about changing the paths in the settings depending on where you are running it from.
For example.. it trying to use a url at the server level that is only valid when you are running it locally
cwilliams38394.7554976852, look in the "check_user_inc.asp" file
Thank you that did it !!
, Yes, you are right. That was the problem. Sorry 
Cheers
Roy
,
Timecard Entry: 3/25/2006 4:56:24 PM
Working with Randy to setup new MLS server, answering phone, taking sign ups, callbacks from voicemail, checked emails. cc report, cancellationof invoices, incident report, , florida, Potsdam to Wat'n = 60mi (I hate construction and school buses), finished those various reports, TOWN OF CLAYTON DEVELOPING DIFFERENT CATEGORIES WITH NEW INFORMATION SUPPLIED BY BOB, Drive back to Clayton (125 miles), Back-up discs, lock up office, phone calls, emails, reception, phone, signing up new customers, stuffing promotional letters, timecard, Emerald & QB entries for rt ck,credit memo, Cortel ck to TICC, invoices, Cleaned up landing & surrounding area., Went over Creg systems with Beth and emerald account reg referral coupon, Printed final copy of the Soft logos, started research on the SoftVendor demo site as to build a front end for the site., 99-7-29___NEXTCOMCS.COM ADDED TO STOREFRONT DESIGN MAKE HTML CODE CHANGES TO ASP PAGES TO CHANGE DESIGN, worked on installing nt on two machines one for a test one for exchange, opened bills and sent PO for Nortel Networks for Paul and Howard, to watertown, Went to AMF Printing, got the inserts, envelopes and whatever else they had for me., Email- read industry articles on Wireless, phones, callbacks, radlog, dial up issues, , Grabbed all of the Wavelan drivers, installed them and then shared the folder. Troubleshooted Grater and sat in with Ed while he discussed about fiber and some Cisco routers. , Telephone conference with Carrie McNally re CREG, BLUEMAXXAAB_NY.COM CONTINUE SCANNING ADDING PHOTOS AND TEXT, read asp book, Customer called and cancelled account.Practiced my typing and read from computer mags. Looked all over for garbage bags but could not find any., Classic Hits Z93 - Went to make updates. Admin interface and events calendar are gone!, emails and voicemail, marble, Transferred the Message Board over to my billybob machine. ,
