I have a few web sites which have a very simple error reporting system which email me when an exception has been thrown. The email does not contain to much information and the exceptions are typically due to viewstate corruption and to a lesser degree session timeout. But I have now seen this exception thrown a few times over the course of a few weeks ___________________________________________ SenderInvalid viewstate. Client IP: 212.138.64.177 Port: 31749 User-Agent: PycURL/7.15.5 ViewState: with Content-Transfer-Encoding: 7bit Content-Type: text/html Subject: little salt, producing a sweeter meat. fter salting bcc: [email protected] anadian bacon in the nited tates but not in anada, where it is simply called back ___________________________________________ Below is the rest of the exception but this is the part that is interesting. Has this person been able to use my site in a way which I would not like it to be used? The exception should not have anything from the 'Subject:' line on down. It looks like someone is trying to use the exception to send an email. The clients I.P. address if from Saudi Arabia; the product offered on the site would probably not be wanted by anyone in Saudi Arabia. I'm not sure if I should do more to resolve this issue? 2b16cdf6fd590a852b1643f4afd0c7d7 . Referer: http://www.mydomain.com/ Path: /Default.aspx Invalid viewstate. Client IP: 212.138.64.177 Port: 31749 User-Agent: PycURL/7.15.5 ViewState: with Content-Transfer-Encoding: 7bit Content-Type: text/html Subject: little salt, producing a sweeter meat. fter salting bcc: [email protected] anadian bacon in the nited tates but not in anada, where it is simply called back 2b16cdf6fd590a852b1643f4afd0c7d7 . Referer: http://www.mydomain.com/ Path: /Default.aspx kevinasp.com
Try referencing this thread from our community forum. http://community.discountasp.net/default.aspx?f=24&m=10014 This usually happens when the application is recycled and the key that is on the server to decrypt the encrypted viewstat is lost. This thread gives a work around to the problem.
I'm not concered about the viewstate corruption it is this that im worryed about. the following which should not be in the exception and I think it is being injected into the page... SenderInvalid viewstate. Client IP: 212.138.64.177 Port: 31749 User-Agent: PycURL/7.15.5 ViewState: with Content-Transfer-Encoding: 7bit Content-Type: text/html Subject: little salt, producing a sweeter meat. fter salting bcc: [email protected] anadian bacon in the nited tates but not in anada, where it is simply called back _______________________________________________________________ kevinasp.com
i think this is caused by some viewstate hacking bot. If you get this error, the hack did not work. Bruce DiscountASP.NET www.DiscountASP.NET
