PDA

View Full Version : Folder permissions.

mike1
02-09-2004, 02:00 AM
Hi,

This is likely to be an easy one and there doesn't appear to be a forum that I can pick to post this so it's in here sorry.

How do I set the permissions on a folder so that people can't browse view the contents of the folder but the asp.net account can open files within that folder.

For example if I create a data folder with xml files in it how do I keep those files private.

Thanks in advance for your help.

Mike
bruce
02-09-2004, 12:25 PM
See this FAQ

http://kb.discountasp.net/article.aspx?id=10166


[b]quote:Originally posted by mike@mics.com

Hi,

This is likely to be an easy one and there doesn't appear to be a forum that I can pick to post this so it's in here sorry.

How do I set the permissions on a folder so that people can't browse view the contents of the folder but the asp.net account can open files within that folder.

For example if I create a data folder with xml files in it how do I keep those files private.

Thanks in advance for your help.

Mike
</blockquote id="quote"></font id="quote">
bruce
02-14-2004, 07:26 AM
The directory has IIS read & execute permission switched off.

Basically, you cannot access anything from this directory from the browser.

[b]quote:Originally posted by dns78727

[b]quote:Originally posted by bruce

See this FAQ

http://kb.discountasp.net/article.aspx?id=10166


[b]quote:Originally posted by mike@mics.com

Hi,

This is likely to be an easy one and there doesn't appear to be a forum that I can pick to post this so it's in here sorry.

How do I set the permissions on a folder so that people can't browse view the contents of the folder but the asp.net account can open files within that folder.

For example if I create a data folder with xml files in it how do I keep those files private.

Thanks in advance for your help.

Mike
</blockquote id="quote"></font id="quote">
</blockquote id="quote"></font id="quote">
That link only refers to protecting Access databases (.mdb files) from being downloading. An XML file will not be a .mdb file. Is there a way to protect all the files in a directory from being downloaded but still accessible from ASP or ASPX scripts?
</blockquote id="quote"></font id="quote">
dns78727
02-14-2004, 07:52 AM
[b]quote:Originally posted by bruce

See this FAQ

http://kb.discountasp.net/article.aspx?id=10166


[b]quote:Originally posted by mike@mics.com

Hi,

This is likely to be an easy one and there doesn't appear to be a forum that I can pick to post this so it's in here sorry.

How do I set the permissions on a folder so that people can't browse view the contents of the folder but the asp.net account can open files within that folder.

For example if I create a data folder with xml files in it how do I keep those files private.

Thanks in advance for your help.

Mike
</blockquote id="quote"></font id="quote">
</blockquote id="quote"></font id="quote">
That link only refers to protecting Access databases (.mdb files) from being downloading. An XML file will not be a .mdb file. Is there a way to protect all the files in a directory from being downloaded but still accessible from ASP or ASPX scripts?
dns78727
02-15-2004, 03:25 AM
[b]quote:Originally posted by bruce

The directory has IIS read & execute permission switched off.

Basically, you cannot access anything from this directory from the browser.
</blockquote id="quote"></font id="quote">

If I understand correctly, in spite of the Knowledge Base stating that this directory is just for .mdb files and "Do not place any other files (e.g., html, asp...etc.) in this folder", I can place any file in this folder that I don't want to be available for download but I can read/write these files using classic ASP, ASP.NET, (and I hope) PHP scripts. I realize one would not want to place HTML and ASP scripts in this directory but there are many other types of files where I would want the same type of protection as for databases.
bruce
02-15-2004, 06:51 AM
That's exactly right.

[b]quote:Originally posted by dns78727

[b]quote:Originally posted by bruce

The directory has IIS read & execute permission switched off.

Basically, you cannot access anything from this directory from the browser.
</blockquote id="quote"></font id="quote">

If I understand correctly, in spite of the Knowledge Base stating that this directory is just for .mdb files and "Do not place any other files (e.g., html, asp...etc.) in this folder", I can place any file in this folder that I don't want to be available for download but I can read/write these files using classic ASP, ASP.NET, (and I hope) PHP scripts. I realize one would not want to place HTML and ASP scripts in this directory but there are many other types of files where I would want the same type of protection as for databases.
</blockquote id="quote"></font id="quote">