Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 8 years ago.
Improve this question
I'm an asp.net developer, but I haven't found a good workflow for deployment. Especially for small quick fixes that might not even require compiling.
The way I work now is to have two VS instances up while copy pasting a lot of code and files between the project and the folder on the IIS server. Is there an automated process that moves changes as I save in the VS project?
Generally speaking, what you are doing is a pretty big no no for a lot of reasons.
When you make changes one of the big advantages ASP.Net has over something like PHP is simply that obvious problems (like misspelling a variable name) are caught during the build phase. This is a huge benefit.
Next, if you are simply modifying a file and copying it's content to the server then it sounds like you are doing your testing in production instead of leveraging your local debugger. Again, very bad practice.
Finally, VS includes a publish command. The purpose of this is to compile and publish your site to the server. It can do so through the regular file system, FTP, web deployment packages or even FPSE. That last one is NOT recommended and is probably kept for backwards compatibility only.
Point is, develop and test locally. When your ready for it to go to the server, use the publish command.
Related
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 5 years ago.
Improve this question
Apologies if this is in the wrong category. I'm currently developing and application in ASP, due to my inexperience with ASP I'm worried about vulnerabilities that a user can exploit.
My application is being coded from scratch, no templates used or defaults from Visual Studio, completely blank projects. The user is greeted with a login page where depending on there user access in active directory depends on which pages the user can access.
The exploit I'm worried about is if the user will be able to commit a directory traversal and access a page in which they're not allowed to access and change critical information.
I'm afraid my inexperience has caught up with me. Could someone explain to me how I could limit the access to the user or, If I'm over thinking the process, correct me? Constructive criticism is accepted.
Microsoft does try to help protect your application through their defaults, so if you're running in IIS, make sure the user the application pool is running under only has write access to the folders it needs to write into.
This is a very open-ended question and depends on many factors such as version of .net, server OS/IIS version, other handlers installed, etc. But a good start is to review the OWASP Top 10:
https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project#OWASP_Top_10_for_2013
Here's a list of some automated tools you can use for testing your implementation:
https://geekflare.com/online-scan-website-security-vulnerabilities/
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 6 years ago.
Improve this question
I have recently built a website based on WordPress. I got a free theme from a source in Pakistan.
I have to use this theme because it perfectly serves my purpose. But I want to know that if this theme is quietly establishing a connection with another server and sending my data.
How can I detect that my website is internally sending some codes to the server of developer of theme? Also, I need to know what servers are being communicated with — like, if any image is getting loaded from their server, any code is imported from their server, or anything else is being fetched from their server to run.
Since you have the source code, then you can simply look what this theme does - basically theme should only be HTML and CSS (or mostly it). If there is too much suspicious PHP of Javascript I wouldn't use it.
If you want to see if it connects to some outside sources, run it in your controlled environment and use some network sniffing tool like Wireshark for example.
Generally speaking - if you don't trust the source where you got your theme and you are not good enough in programming to check for malicious code yourselves, don't use it!
I would recommend downloading some of themes provided directly by wordpress.org - those should be safe.
Closed. This question is not reproducible or was caused by typos. It is not currently accepting answers.
This question was caused by a typo or a problem that can no longer be reproduced. While similar questions may be on-topic here, this one was resolved in a way less likely to help future readers.
Closed 8 years ago.
Improve this question
I am redesigning my company's website. I am not a developer, but have learned as I went along. I am ready to push out my site to a test subdomain, but I can't figure out how to publish it correctly using VS Express for Web 2013. I have multiple problems.
First, we have our own internal IIS server and I have a "site3" folder on the server ready for testing the new site. I can't use Web Deploy or Web Deploy Package. I publish using File System. This seems to sorta work, but no images load and it redirects me to a Login page that I have no intention of using. When I run the site on my local machine, everything works 100% fine - no login page and all site resources load and function perfectly.
Second, when I try to publish, there is no "Release" configuration like I see in online tutorials and MSDN, only "Debug." Is there something I'm missing in the configuration? The publishing? Am I using the wrong framework? This is my first rodeo and I am completely lost.
If anyone wants to look at my completely jacked up site, it's http://site3.tcns.net
EDIT: I'm beginning to think that it has something to do with the fact I have no clue how to configure the web.config file and the default file isn't plug-and-play for a basic website.
I have some idea as to what happened. I accidentally created an MVC solution instead of a basic website.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 3 years ago.
Improve this question
I want to develop an ERP system, but I want it to run on a web browser. I want it to store data in an SQLite database, but I don't want it to have to work as client/server, just local.
I also want to have access to environment variables and the filesystem. Ultimately I want to manipulate the DOM using C instead of JavaScript.
Is there a browser, framework or library for this?
As far as I know, it's impossible to manipulate the DOM with any language other than JavaScript - since that is the only programming language which the browser will run.
I would try to think of one of the following:
1) Run a local web server - why shouldn't you? I am not sure about C, but Python, Ruby, JS and many other languages make these extremely simple to set up.
2) Just write a GUI application, if you are really opposed to having another program running in the network.
3) If you're not opposed to Python (instead of C), you can try out Pyjamas - a framework which allows you to code a web-app in Python, and use it as a desktop app later (without running the server). The non-server version won't actually run inside a browser though (AFAIK - I've never tried it myself).
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 6 years ago.
Improve this question
Secondary questions are
How do we best utilize SCM in the build process?
How are code files labed and branched?
Should we the .csproj and .sln files for build? How flexible are these when deploying to several environments? I know these are msbuild files. But
as we add new files, this can become a bottlenect of updating and maintaining these .csproj files in SCM.
How is rollback done in case of failed builds that QA missed testing etc,etc.,
Are there any good articles on the build process?
This is more a question on the process and less on the choice of automated build tools. Please share your build process. I would like to get an end-to-end view
from developers checking-in to Going Live.
Continuous Integration: Improving Software Quality and Reducing Risk
http://www.amazon.com/gp/product/0321336380
book's website is here:
http://www.integratebutton.com