Vishal_m
asked on
Encrypting ASP files
I would like to know if there is a way to encrypt ASP files on the server (IIS) so that a user cannot access the source code.
Do you mean a local user with access to the filesystem? It ought to be impossible for a user (remote or local) to access the source code through IIS.
With Microsoft Script encoder
http://www.microsoft.com/downloads/details.aspx?FamilyId=E7877F67-C447-4873-B1B0-21F0626A6329&displaylang=en
http://www.microsoft.com/downloads/details.aspx?FamilyId=E7877F67-C447-4873-B1B0-21F0626A6329&displaylang=en
Do you mean a local user with access to the filesystem? It ought to be impossible for a user (remote or local) to access the source code through IIS.
Do you mean a local user with access to the filesystem? It ought to be impossible for a user (remote or local) to access the source code through IIS.
While the Microsoft Script Encoder is a nice tool, it can be beat and the code decoded simply enough. http://www.virtualconspiracy.com/index.php?page=scrdec/intro&ref=
The best wat is to create .dll files out of the code.
The best wat is to create .dll files out of the code.
Exactly, if you really have sensitive routines or users/passwords that you don't want anyone to see the best (but not foolproof) method is to put the functions into COM objects (using VB, C++, C#, etc) and then call the objects from your asp.
Brett
Brett
[spellcheck]...
The best way is to create .dll files out of the code
The best way is to create .dll files out of the code
how do you call dll from asp?
Like this:
<%
Set adrot=Server.CreateObject( "MSWC.AdRo tator")
%>
That creates a reference to the built in adrotator function, but it's the same method for any DLL that you create and register.
Brett
<%
Set adrot=Server.CreateObject(
%>
That creates a reference to the built in adrotator function, but it's the same method for any DLL that you create and register.
Brett
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Forgot the function to EnCrypt call;
objEncryption.EnCrypt()
Response.Write "<b>Encrypted Text</b>: " & objEncryption.Encryption & "<br>"
objEncryption.EnCrypt()
Response.Write "<b>Encrypted Text</b>: " & objEncryption.Encryption & "<br>"
do you have to register the dll?
Yes...
Well... that depends, certain .dll's are packaged as non-registering objects, C++ has this abiliy, not sure about VB.
Ok, so how does ASP know how to get to the object if the dll isn't registered????? I didn't know there were ways to use objects without at least one of the components being registered--example?
Brett
Brett
99% of any .dll created for use in an asp page must be registered so I wouldn't worry about the un-registered objects.
Let's say a 100% of any .dll created for use in an asp page. To use a dll in asp you have to call server.createobject. To use server.createobject the dll has to be registered.
I ran into a C component the other day, can't remember where, but it was non-registering and ws called from a asp...
Anyway, that's not the issue here, we haven't heard from Vishal since day one...
Anyway, that's not the issue here, we haven't heard from Vishal since day one...
mqfranz, it's a pitty you don't know which component it was. I'm quiet curious, I didn't think it was possible for asp to call a non registered component.
Im really interested with this asp calling dll can you someone please give me a full code on how to do this
thanks
thanks
Maxmaster, the code was already posted above....
albert,
Here is the error when i try to run the code above
Server object error 'ASP 0177 : 800401f3'
Server.CreateObject Failed
can please tell me how to this properly thanks
Hey Max, why don't you post a seperate Q to get this answered?
albert,
Here is the error when i try to run the code above
Server object error 'ASP 0177 : 800401f3'
Server.CreateObject Failed
can please tell me how to this properly thanks
You probably get that error because you don't have that object on your machine!!!! That was an example--you must have the DLL loaded and registered on the server to use it.
Brett
Brett
ASKER
Does anyone have an idea about the HTML Guardian software from Protware? How effective is it?
It's works fine, 99% of the general public will never be able to crack it. But true hackers will be able to...
But I thought you wanted to encrypt them on the server? All the HTML Guardian does is protect the output HTML code.
But I thought you wanted to encrypt them on the server? All the HTML Guardian does is protect the output HTML code.
ASKER
In addition it also encrypts .asp files and other client/server side scripts.
What's up with this question???
No comment has been added lately, so it's time to clean up this TA.
I will leave a recommendation in the Cleanup topic area that this question is:
Accept Answer by mgfranz
Please leave any comments here within the next seven days.
PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!
GaryC123
EE Cleanup Volunteer
I will leave a recommendation in the Cleanup topic area that this question is:
Accept Answer by mgfranz
Please leave any comments here within the next seven days.
PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!
GaryC123
EE Cleanup Volunteer