Edit the code of asp.net in run mode
-
hello. is is possible to edit the code of .aspx file while running the application? Thanks in advance
ciacia wrote:
is is possible to edit the code of .aspx file while running the application?
Yes. If you have the relevant file permissions you can alter an ASPX file. However, it isn't wise to permit that level of access as it would remove some of the protection set up to prevent websites from being attacked.
Upcoming events: * Glasgow: Mock Objects, SQL Server CLR Integration, Reporting Services, db4o, Dependency Injection with Spring ... "I wouldn't say boo to a goose. I'm not a coward, I just realise that it would be largely pointless." My website
-
ciacia wrote:
is is possible to edit the code of .aspx file while running the application?
Yes. If you have the relevant file permissions you can alter an ASPX file. However, it isn't wise to permit that level of access as it would remove some of the protection set up to prevent websites from being attacked.
Upcoming events: * Glasgow: Mock Objects, SQL Server CLR Integration, Reporting Services, db4o, Dependency Injection with Spring ... "I wouldn't say boo to a goose. I'm not a coward, I just realise that it would be largely pointless." My website
can you please tell me how do I achive it? I am surrently debugging my code so every time loading the page takes lot of time . Also I have one more question to ask... I want to execute sql statement to compare two dates on my web page with the one in the database strsql = "select * from emp where My_date >= " & FDAte & " and Mydate >= " & TDate where Fdate and Tdate are strings containing valid date.I tried using ' and also #
-
can you please tell me how do I achive it? I am surrently debugging my code so every time loading the page takes lot of time . Also I have one more question to ask... I want to execute sql statement to compare two dates on my web page with the one in the database strsql = "select * from emp where My_date >= " & FDAte & " and Mydate >= " & TDate where Fdate and Tdate are strings containing valid date.I tried using ' and also #
ciacia wrote:
can you please tell me how do I achive it?
It is very unwise. It also opens your application to more security concerns. Things that ASP.NET and IIS would have taken care off for you but you now have to handle yourself.
ciacia wrote:
I want to execute sql statement to compare two dates on my web page with the one in the database strsql = "select * from emp where My_date >= " & FDAte & " and Mydate >= " & TDate where Fdate and Tdate are strings containing valid date.I tried using ' and also #
And this question shows that you don't have a sufficient understanding of security. Any guidance that I could give on your problem in the space of a forum post wouldn't be enough to protect you from yourself. You might want to read up on security before you go much further with this project. The first thing to read is about SQL Injection attacks and you are vulnerable to that right now. See SQL Injection Attacks and tips on how to prevent them[^] I'm sorry this doesn't answer your question, but there are other things you really need to learn first, in my opinion.
Upcoming events: * Glasgow: Mock Objects, SQL Server CLR Integration, Reporting Services, db4o, Dependency Injection with Spring ... "I wouldn't say boo to a goose. I'm not a coward, I just realise that it would be largely pointless." My website