I want to know all the ways to hack a website (not hack server).
i only want to prevent my web-site (written in ASP).
pls tell me!
Thanks for regard!
White Rose.
Printable View
I want to know all the ways to hack a website (not hack server).
i only want to prevent my web-site (written in ASP).
pls tell me!
Thanks for regard!
White Rose.
hi,
wat do u mean by hack a web site?
Do u mean that no one shud grab info from ur asp/html pages??
regds,
ashay
If they cant get on your server, they cant see your ASP code.
If you look at www.geocities.com/ganglepangle (a bad web site i made once) (and select DHTML vresion) then it seems like a kinda normal site but i bet you didn't notice that the pages are decoded using javascript so no-one ever sees the original html??
Unless you encode the data 'on the fly' then you can still get the HTML (even if u got no right click and auto frame load and JS password protection) by using a network moniter and looking at the HTTP requests.
I seen other pages that try this, but it is still trivial to beat (IE will gladly give you the HTML source of whatever it's rendering).Quote:
Originally posted by P9846
If you look at www.geocities.com/ganglepangle (a bad web site i made once) (and select DHTML vresion) then it seems like a kinda normal site but i bet you didn't notice that the pages are decoded using javascript so no-one ever sees the original html??
Unless you encode the data 'on the fly' then you can still get the HTML (even if u got no right click and auto frame load and JS password protection) by using a network moniter and looking at the HTTP requests.
why would anyone even want to protect HTML source? Nobody wants it anyhow, HTML is worthless.
Did you guys ever see the +.htr for asp?
I was working on a site a few years back now, and a sysadmin showed me it... freaked me right out!!!!
I think that it has been fixed in an IIS service release but you could see the entire contents of the global.asa file....
Cheers
MarkusJ