jason101799
asked on
Encryption on file or image
Experts,
I would like to know if there is a way I can encrypt my images of files (.text or .doc). Any comments and suggestion are most welcome. If you guys don't mind the hassle please feel free to include any source codes or url that you know.
Thank you.
Cheers
Jason
I would like to know if there is a way I can encrypt my images of files (.text or .doc). Any comments and suggestion are most welcome. If you guys don't mind the hassle please feel free to include any source codes or url that you know.
Thank you.
Cheers
Jason
Encrypt them in what way?
Maintain your questions well.
hongjun
hongjun
ASKER
Sorry Guys, actually I would like to encrypt files uploaded to my Web Server. Users can upload .doc, .txt or even image files. I would like to encrypt them when I have uploaded into my web server and decrypt when I/Authorised users retrieve it and display it on the browser. This has to do with security issue because I don't want unauthorised users to see this files except those who have rights.
This is due to users can go direct to my web server folder and and open up the files and they will be able to see everything. So if I encrypt it at least they won't know the source.
Thats what I mean and I hope this clarify.
Cheers
Jason
This is due to users can go direct to my web server folder and and open up the files and they will be able to see everything. So if I encrypt it at least they won't know the source.
Thats what I mean and I hope this clarify.
Cheers
Jason
ASKER
Anymore suggestions?? I don't quite understand about jupload.html
Thanks
Jason
Thanks
Jason
Why encrypt them.. it's actually not possible this way.. try to limit access to these files to only restricted users..
ASKER
Silver5,
Just in case unauthorised users penetrate the system and these sensitive files will be easily accessed. By encrypting them at least they can't view the actual information. An advice?
Cheers
Jason
Just in case unauthorised users penetrate the system and these sensitive files will be easily accessed. By encrypting them at least they can't view the actual information. An advice?
Cheers
Jason
Encryption is a huge market, companies spend millions of dollars in order to protect their files. As far as I know, there are no cheap and easy ways to encrypt .doc type files. Why not just use basic permission rights?
You could try to use a product like 'Silverkey' (do search on download.com or tucows). This product is very cheap and uses Blowfish to encrypt any file.
ASKER
Guys,
Due to budget constraint, I need to come out with a simple encryption solution. Getting third party solution is currently not in my list, perhaps when my clients award this project to us then I can look into this. :)
Hope you guys can do me a favor.
Cheers
Jason
Due to budget constraint, I need to come out with a simple encryption solution. Getting third party solution is currently not in my list, perhaps when my clients award this project to us then I can look into this. :)
Hope you guys can do me a favor.
Cheers
Jason
if you have a good administrator (that will apply latest NT patches set tight ntfs permissions..etc) nobody can hack into the system.. it will be easyer to hack as a site user.. if you have office documents you can tell your users to password them (passwords with over 8 diversive chars).. this is the best way..
ASKER
Silver5,
Please explain further, perhaps you can give me a brief description on how to utilise your suggestion.
Thanks
Please explain further, perhaps you can give me a brief description on how to utilise your suggestion.
Thanks
The administrator shoud assign NTFS permissions to only users that are eligible to access the files.. he can create for you folders with these rights and if the browsing is made thru NT authentication users can access only files that they have rights on.. if you are using a database based authentication then you first check if the user have permissions to view a certain file you pass it to him in this way:
if Session("UserAllowed") then
set objBinaryFile = Server.CreateObject("Binar yFileStrea m.Object")
Response.BinaryWrite objBinaryFile.GetFileBytes (CStr(strF ileName))
set objBinaryFile = nothing
end if
You populated the session based on your database entry for that record as true or false
BinaryFileStream object dll can be found here:
http://download.microsoft.com/download/excel2000/sample/2000/w9x2k/en-us/ChartGIF.exe
if Session("UserAllowed") then
set objBinaryFile = Server.CreateObject("Binar
Response.BinaryWrite objBinaryFile.GetFileBytes
set objBinaryFile = nothing
end if
You populated the session based on your database entry for that record as true or false
BinaryFileStream object dll can be found here:
http://download.microsoft.com/download/excel2000/sample/2000/w9x2k/en-us/ChartGIF.exe
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
mgfranz,silver5
The problem is any user with administrator rigths can access the file in NTFS even the administrator himself. I would like to restrict to only two person not inclusive of the administrator to access the file and it must be through the web that they can view this file. Would it be possible?
The problem is any user with administrator rigths can access the file in NTFS even the administrator himself. I would like to restrict to only two person not inclusive of the administrator to access the file and it must be through the web that they can view this file. Would it be possible?
yes.. you need to give these users NTFS permissions on these files and disable anonymous account for these directories (set them virtual) enable directory browsing, and NT authentication and only administrators and these users will be able to list and access the files.. other users can be able to access the unrestricted areas..
You cannot restrict the Administrator from viewing files, that's why he/she is called the Administrator.
Sure it can be done, but the Admin has to do it, and it cannot be undone. It is disaterous!
Sure it can be done, but the Admin has to do it, and it cannot be undone. It is disaterous!
jason@lc,
These questions are still open. Please resolve them appropriately as soon as possible. Continued disregard of your open questions will result in the force/acceptance of a comment as an answer; other actions affecting your account may also be taken. I will revisit these questions in approximately seven (7) days.
https://www.experts-exchange.com/jsp/qShow.jsp?ta=win2k&qid=20167319
https://www.experts-exchange.com/jsp/qShow.jsp?ta=java&qid=20153401
https://www.experts-exchange.com/jsp/qShow.jsp?ta=java&qid=20151128
https://www.experts-exchange.com/jsp/qShow.jsp?ta=java&qid=20146743
https://www.experts-exchange.com/jsp/qShow.jsp?ta=javascript&qid=20150594
https://www.experts-exchange.com/jsp/qShow.jsp?ta=visualbasic&qid=20245522
https://www.experts-exchange.com/jsp/qShow.jsp?ta=asp&qid=20239352
https://www.experts-exchange.com/jsp/qShow.jsp?ta=asp&qid=20166221
https://www.experts-exchange.com/jsp/qShow.jsp?ta=xml&qid=20243323
https://www.experts-exchange.com/jsp/qShow.jsp?ta=exchangesvr&qid=20240796
EXPERTS: Please leave your thoughts on this question here.
Thanks,
Netminder
Community Support Moderator
Experts Exchange
These questions are still open. Please resolve them appropriately as soon as possible. Continued disregard of your open questions will result in the force/acceptance of a comment as an answer; other actions affecting your account may also be taken. I will revisit these questions in approximately seven (7) days.
https://www.experts-exchange.com/jsp/qShow.jsp?ta=win2k&qid=20167319
https://www.experts-exchange.com/jsp/qShow.jsp?ta=java&qid=20153401
https://www.experts-exchange.com/jsp/qShow.jsp?ta=java&qid=20151128
https://www.experts-exchange.com/jsp/qShow.jsp?ta=java&qid=20146743
https://www.experts-exchange.com/jsp/qShow.jsp?ta=javascript&qid=20150594
https://www.experts-exchange.com/jsp/qShow.jsp?ta=visualbasic&qid=20245522
https://www.experts-exchange.com/jsp/qShow.jsp?ta=asp&qid=20239352
https://www.experts-exchange.com/jsp/qShow.jsp?ta=asp&qid=20166221
https://www.experts-exchange.com/jsp/qShow.jsp?ta=xml&qid=20243323
https://www.experts-exchange.com/jsp/qShow.jsp?ta=exchangesvr&qid=20240796
EXPERTS: Please leave your thoughts on this question here.
Thanks,
Netminder
Community Support Moderator
Experts Exchange
Admin notified of User neglect. Force-accepted by
Netminder
Community Support Moderator
Experts Exchange
Netminder
Community Support Moderator
Experts Exchange