NCS Logo - Click for home page Northstar Developer Center
Selected Platform: All
RSS Subscriptions | About the Developer Center | Editorial Policy
Platforms
All Platforms
.NET Framework (1.x - 4.x)
Active Server Pages
ASP.NET
C#
SQL Server
VB.NET
Visual Basic

Keywords
.NET Data Types
.NET E-mail
.NET Events
.NET Functions
.NET Object Programming
.NET System.Configuration
.NET System.Diagnostics
.NET System.IO
.NET System.Net
.NET System.Net.Sockets
Active Data Objects
ASP Architecture
ASP Black Belt
ASP Built-in Functions
ASP Built-in Objects
ASP Debugging
ASP Performance
ASP Security
ASP Syntax
ASP.NET Authentication
ASP.NET Controls
ASP.NET Data Access
ASP.NET Features
ASP.NET Master Pages
ASP.NET Page Events
ASP.NET Security
ASP.NET ViewState
Atom
Certifications
COM, DCOM, COM+
Data Access
E-Mail
Errors
Exporting Data
HTML Tips
IIS
Object-Oriented Programming
RSS
SQL
Uncategorized ASP Tips
VB API Programming
VB Forms
VB Syntax
XML

Book Support
Visual Basic 6 Bible
ASP Bible
ASP Weekend Crash Course
ASP.NET At Work
Creating Web Services

Changing the URL Parameters

Written by Eric Smith, Northstar Computer Systems LLC

One of the disadvantages of using command line parameters to link to an ASP file is that the user can simply change those parameters. Depending on the application and what you're using those numbers for, this could be a security risk. If you don't want the user changing them, you need to keep them out of the web page. Even if you put the data as hidden input fields, the user could potentially still change the file and resubmit it from his/her server. If you need to keep confidential data like this, leave it on the server and send a reference to the set of important data instead. That way the user won't know what he/she is changing.

Keywords: [ Uncategorized ASP Tips ]

Publication Date: 5/1/2000