Security problem

Micke Palm · Dec 5, 2003

Hi there!

When I went to work today I found that someone have create a table in the
database and insert the names of all other tables in a field in this table.
We have config a account in the database as we use from web.config so I
suppose the user have done something in the site like typing a smart sql
string in a textbox or similar.

Do anyone any ideas of securitys in the site to set so this situation will
be zip? Or any other ideas how the user can do something like this??

/regards, micke

Arun Ganesh [.NET MVP] · Dec 5, 2003

Hi,

Check the link for solution.

http://msdn.microsoft.com/library/default.asp?
url=/library/en-us/dnnetsec/html/SecNetch12.asp

warm regards,
Arun .
www.arunmicrosystems.netfirms.com

Micke Palm · Dec 5, 2003

Thanks a lot!

/micke

Arun Ganesh said:
Hi,

Check the link for solution.

http://msdn.microsoft.com/library/default.asp?
url=/library/en-us/dnnetsec/html/SecNetch12.asp

warm regards,
Arun .
www.arunmicrosystems.netfirms.com

How to connect MySQL DataBase to Java Application	2	Dec 11, 2023
SQL Problem Using Extract Command	0	Apr 8, 2022
Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples.	2	May 5, 2023
Logic Problem with BigInteger Method	2	Aug 26, 2023
I'm tempted to quit out of frustration	1	Aug 13, 2023
Password validation security issue	19	Mar 1, 2014
Problem accessing security	0	Jun 18, 2008
Sharing ASPNET security	3	Jul 28, 2010

Security problem

Micke Palm

Arun Ganesh [.NET MVP]

Micke Palm

Ask a Question

Similar Threads

Members online

Forum statistics

Latest Threads