D.1.1 File System Access

The Chili!Soft ASP configuration setting EnableParentPaths that controls access to the file system outside the ASP application directory. If EnableParentPaths is True (the default) then ASP developers can use the "../" syntax in #include statements to access any file outside of the Web directory that the ASP engine has file system permission to read. See Security Modes, below, for more information on controlling file system access by the Chili!Soft ASP engine.
If EnableParentPaths is set to False, #include statements can not use the "../" syntax to access files outside the Web root directory.
A FileSystemObject instantiated by an ASP application is limited to that application's defined directory when EnableParentPaths is set to False. When EnableParentPaths is True, the FileSystemObject can access any file in the file system that the ASP engine has permission to read.
Copyright © 2000 Chili!Soft
|