如何制作一个安全的页面？

manage.asp
‘ Ã§ÂÂ»Ã¥Â½ÂÃ©Â¡ÂµÃ©ÂÂ¢.xml:namespace prefix = o ns = “urn:schemas-microsoft-com:office:office” /??

<%@ Language=VBScript %>
<html>
<body>
<form name=”Login” method=”Post” action=”login.asp”>
<input type=”text” name=”username” size=”20″>Ã§ÂÂ¨Ã¦ÂÂ·Ã¥ÂÂ<br>
<input type=”password” name=”password” size=”20″>Ã¥ÂÂ£Ã¤Â»Â¤<br>
<input type=”submit” name=”btnLogin” value=”Ã§ÂÂ»Ã¥Â½Â“>
</form>
</body></html>

<%@ Language=VBScript %>
<% Response.Buffer = True %>

<% Session(“allow”) = True %>

<%
UserName = Request.Form(“username”)
Password = Request.Form(“password”)
‘ Ã¦ÂÂÃ¥ÂÂÃ¨Â¡Â¨Ã¥ÂÂÃ¥ÂÂÃ¥Â®Â¹.

Set MyConn=Server.CreateObject(“ADODB.Connection”)
MyConn.Open “Ã¨Â¿ÂÃ¦ÂÂ¥Ã¥ÂÂÃ§Â¬Â¦Ã¤Â¸Â²“

SQL = “Select * From tblLogin”
Set RS = MyConn.Execute(SQL)

If UserName = RS(“UserName”) AND Password = RS(“Password”) Then
‘ Ã¥Â¦ÂÃ¦ÂÂÃ¥ÂÂ¹Ã©ÂÂÃ¥ÂÂÃ¦ÂÂ¾Ã§Â¤ÂºÃ¨Â¦ÂÃ¤Â¿ÂÃ¦ÂÂ¤Ã§ÂÂÃ©Â¡ÂµÃ©ÂÂ¢.
%>
—————————————————————————————————————-
‘ Ã¦ÂÂ¤Ã¥Â¤ÂÃ¦ÂÂ¾Ã§Â½Â®Ã¨Â¦ÂÃ¤Â¿ÂÃ¦ÂÂ¤Ã§ÂÂÃ©Â¡ÂµÃ©ÂÂ¢Ã§ÂÂÃ¥ÂÂÃ¥Â®Â¹.
—————————————————————————————————————-
<%
Else
Response.Redirect “http://www.intels.net/login.asp”
RS.Close
MyConn.Close
Set RS = Nothing
Set MyConn = Nothing
End If
%>
‘ Ã¥Â¦ÂÃ¦ÂÂÃ¤Â¸ÂÃ¥ÂÂ¹Ã©ÂÂÃ¥ÂÂÃ¨Â¿ÂÃ¥ÂÂÃ§ÂÂ»Ã¥Â½ÂÃ©Â¡Âµ,Ã¨Â®Â©Ã§ÂÂ¨Ã¦ÂÂ·Ã©ÂÂÃ¦ÂÂ°Ã§ÂÂ»Ã¥Â½Â.

</body></html>

ÃÂ ÃÂ ÃÂ Ã¥Â¥Â½Ã¤ÂºÂÃ¯Â¼ÂÃ¨Â®Â©Ã¦ÂÂÃ¤Â»Â¬Ã¦ÂÂ¥Ã¥ÂÂÃ¦ÂÂÃ¥ÂÂÃ§ÂÂÃ¥ÂºÂÃ§ÂÂ¨Ã¥Â·Â¥Ã¤Â½ÂÃ¥ÂÂ§Ã¯Â¼ÂÃ¦ÂÂÃ¤Â¸ÂÃ©ÂÂ¢Ã§ÂÂÃ¤Â»Â£Ã§Â ÂÃ¥ÂÂ Ã¥ÂÂ¥Ã©ÂÂÃ¨Â¦ÂÃ¤Â¿ÂÃ¦ÂÂ¤Ã§ÂÂÃ©Â¡ÂµÃ©ÂÂ¢Ã§ÂÂÃ¦ÂÂÃ¥ÂÂÃ©ÂÂ¢Ã¯Â¼Â
<%@ Language=VBScript %>
<% Response.Buffer = True %>
<% If session(“allow”) = False Then Response.Redirect “manage.asp” %>

[1]

如何制作一个安全的页面？

相关推荐