Re: Deny access to a directory with web.config

From: Matt (none_at_none.com)
Date: 04/27/05

• Next message: poz: "Re: Webapplication Login and RSA API"
• Previous message: xarky d_best: "Re: Securing an ASP.Net application"
• In reply to: Brock Allen: "Re: Deny access to a directory with web.config"
• Next in thread: Juan T. Llibre: "Re: Deny access to a directory with web.config"
• Reply: Juan T. Llibre: "Re: Deny access to a directory with web.config"
• Reply: Brock Allen: "Re: Deny access to a directory with web.config"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Wed, 27 Apr 2005 10:25:43 +0200

Good suggestion, but is there a way to control access to that
directory with the web.config?

Thanks.

>You can move the directory outside of the web application's directory.
>
>-Brock
>DevelopMentor
>http://staff.develop.com/ballen
>
>
>
>> Hello,
>> I'm working on a portal based on IBuySpy, where the main page is
>> desktopdefault.aspx and all content is stored in
>> www.domain.com/content/html/nnn
>> or
>> www.domain.com/content/images/nnn
>> and injected in the desktopdefault.aspx page.
>> How can I prevent users doing www.domain.com/content/images/test.jpg
>> and getting the image (or the html file, or whatever inside the
>> content directory?)
>> It doesn't matter if the user is authenticated or not, I just want
>> obly the webapplication to be able to load and display the files
>> inside the /content directory.
>> Can I do this just manipulating the web.config, without changing
>> directory permissions on the webserver?
>>
>> Thanks!
>>
>
>

---

• Next message: poz: "Re: Webapplication Login and RSA API"
• Previous message: xarky d_best: "Re: Securing an ASP.Net application"
• In reply to: Brock Allen: "Re: Deny access to a directory with web.config"
• Next in thread: Juan T. Llibre: "Re: Deny access to a directory with web.config"
• Reply: Juan T. Llibre: "Re: Deny access to a directory with web.config"
• Reply: Brock Allen: "Re: Deny access to a directory with web.config"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: CDHtmlDialog fail to load image in Vista ... Thanks for suggestion. ... If I take the same HTML file and display it with: ... is coming from the resource, and it is referencing an external .gif file, ... (microsoft.public.vc.mfc) Re: Calling scripts ... use multiple times or later on in your script. ... So what I'm hearing here, I think, is a suggestion to, in this case for ... some cases the file is an html file ... a separate html file. ... (alt.php) Re: Review: Wixey Digital Angle Gauge ... Thanks for the suggestion, but that made no difference on my viewing ... saving it to your HD and looking at it. ... openoffice has generated its own html file, ... so that maybe an easy fix can be identified for ... (rec.woodworking) Re: Deny access to a directory with web.config ... > Good suggestion, but is there a way to control access to that ... Not if IIS is serving up the files, as the request never makes it to ASP.NET. ... (microsoft.public.dotnet.framework.aspnet.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.dotnet.framework.aspnet.security  > 2005-04