简体繁体 English

我如何在经典的ASP环境中保护非ASP文件

[英]How can i secure non-asp files in a classic asp environment

原文 2010-11-04 13:08:25 5 1 security/ asp-classic

I have a folder in which all asp files are protected by including validate.asp (which presents a login if the session is not validated and ends the response, otherwise it allows the page to display. 我有一个文件夹，其中所有的ASP文件都通过包括validate.asp（如果未验证会话并显示响应，则显示登录名并结束响应，从而保护了该页面的显示）而受到保护。

How can I protect non-asp content? 如何保护非ASP内容？

The Site is running under Windows 2003 Server with IIS 6.0 该站点在带有IIS 6.0的Windows 2003 Server下运行

1 个解决方案

@My Other Me: check out ISAPI Rewrite @My Other Me：查看ISAPI重写

ISAPI_Rewrite is a powerful URL manipulation engine based on regular expressions. ISAPI_Rewrite是基于正则表达式的功能强大的URL操作引擎。 It acts mostly like Apache's mod_Rewrite, but is designed specifically for Microsoft's Internet Information Server (IIS). 它的行为与Apache的mod_Rewrite相似，但专门为Microsoft的Internet信息服务器（IIS）设计。 ISAPI_Rewrite is an ISAPI filter written in pure C/C++ so it is extremely fast. ISAPI_Rewrite是用纯C / C ++编写的ISAPI过滤器，因此速度非常快。 ISAPI_Rewrite gives you the freedom to go beyond the standard URL schemes and develop your own scheme. ISAPI_Rewrite使您可以自由地超越标准URL方案并开发自己的方案。

Alternatively, you can also check out IIS Password 或者，您也可以签出IIS密码

IISPassword password protects web sites that are hosted on Microsoft IIS, without using system user accounts. IISPassword密码可保护Microsoft IIS上托管的网站，而无需使用系统用户帐户。 IISPassword protects complete web sites, subfolders or even certain files or file types. IISPassword保护完整的网站，子文件夹甚至某些文件或文件类型。 When trying to access a password protected object, the user is asked to log in through a dialog box .. 尝试访问受密码保护的对象时，要求用户通过对话框登录。

ISAPI Rewrite has a lite version and IISPassword has a trial version, so you can try out both for free to see if they could suit your needs. ISAPI Rewrite具有精简版，而IISPassword具有试用版，因此您可以免费试用两者，看看它们是否满足您的需求。