Freelancers Network
 
skill list top cap
Homepage
Join the Freelancer's Network
Update your details
Find a freelancer
Post a project
Find a project
Projects Archive
Post a job
Find a job
Jobs Archive
See Dan's Pages
See Andy's Pages
Link to this site
Resources
Join/Leave Forum
Forum Messages
+Additions+ Adverts
Advertising
Contact Us
Subscribe to our newsletter - enter your email address and hit return
Freelancers.net is owned and operated by Andy Stowell and Dan Winchester
skill list end cap
guru web hostcom

Find me again on Freelancers.net

Re: FN-FORUM: RC4 encryption

date posted 17th November 2003 19:25

Because I am trying to pass it to an Iframe. Someone else wrote the original
code and it wasn't even encrypted. It might be a good idea to change the
name from strsql though - it is a bit obvious - thanks.

Pam

----- Original Message -----
From: "Andy Macnaughton-Jones" [EMAIL REMOVED]
To: [EMAIL REMOVED]
Sent: Monday, November 17, 2003 7:36 PM
Subject: RE: FN-FORUM: RC4 encryption


>
> Why are you putting (albeit encrypted) a SQL statement in a query string
> ? It's just asking somebody to dig deeper if they see
> search_details.asp?strsql.
>
>
> Andy
> IWD2 LLP
> [EMAIL REMOVED]
>
> -----Original Message-----
> From: John Kyle [EMAIL REMOVED]
> Sent: 17 November 2003 19:23
> To: Andy Macnaughton-Jones
> Subject: Re: FN-FORUM: RC4 encryption
>
>
> Hello Pamela,
>
> First url encode the sql string and then encrypt it - then decrypt and
> url decode just to be on the safe side
>
> Best Regards
>
> John Kyle
>
> ----- Original Message -----
> From: "PAMELA WHITTAKER" [EMAIL REMOVED]
> To: [EMAIL REMOVED]
> Sent: Monday, November 17, 2003 6:48 PM
> Subject: FN-FORUM: RC4 encryption
>
>
> >
> > Hi,
> > I am having problems the cipher RC4 encryption. I can't get it to
> > work.
> >
> > I have this in the main page :-
> >
> >
> >
> > > response.write Request.form("strsql") & ""
> > response.write LEN(Request.form("strsql")) & ""
> > strsql = EnDeCrypt(Request.form("strsql"), "plwmarmmy")
> > strsql = Server.URLEncode(strsql)
> > response.write strsql
> > %>
> > > name='policy_search' frameborder='0' scrolling='auto' width ='100%'
> > height='400'>
> > This page uses frames, but your browser doesn\'t support them.
> >
> >
> >
> >
> > and this in the Iframe page:-
> >
> > response.write len(Request.Querystring("strsql"))
> > strSql = EnDeCrypt(Request.Querystring("strsql"), "plwmarmmy")
> > response.write strSql
> >
> >
> >
> > response.write LEN(Request.form("strsql")) & "" in the main page
> > comes out as 145
> >
> >
> > response.write len(Request.Querystring("strsql")) in the Iframe come
> > out
> as
> > 124
> >
> > the encryted string that is set is is :
> >
> >
> %83Q%16%C0%E4h%CA%D4%84m8%BA%91%EC%D6M%9E%14%83%FCe0%CF%13%ED%B8%3C%FE%2
> 7%18
> >
> o%3C%CEX%C4%F6%17%2Dc%88%FBJ%B0%9A%CF%F5%01R%1D%18%C0%17%FCvU%27%DB%B4%F
> 1%CC
> >
> t8%3B%F9%D3%11a%874%21%7Cs%82%8A%C7E%85%8ED%E8%D2%BBm%2E%C4X%D5%3D%10Bg%
> D6%2
> >
> D%3Ap%A8%E6%FA%8B%14n%BA%C1%F8%3A5%CCXz%16%26%C8%3B%BC%0D%87Z%93%A7%01%1
> 7%D4
> > %B1%04
> >
> > from the following
> >
> > set dateformat dmy;Select * from [Order] where
> > AgentCode='chgtest240903' And Payment_Mode='MonthlyBilling' order by
> > CONVERT(DateTime,Issue_Date)
> >
> >
> > The string I end up with after decryting it in the Iframe is set
> > dateformat dmy;Select * from [Order] where AgentCode='chgtest240903'
> And
> > Payment_Mode='MonthlyBilling' order by CONVERT
> >
> > Any ideas why as I have been hitting my head against a brick wall all
> > afternoon
> >
> > Thanks
> > Pam
> >
> >
> > --
> > * The Web Design Business Kit *
> > Find out how to price your work, market your business, make pitches
> > that get the client, write effective proposals and beat the
> > competition into the ground. Download 4 free sample chapters.
> > http://sitepoint.com/launch/b7c91e/
> >
> > To advertise here: http://www.freelancers.net/advertising.html
> >
> >
> --
> * The Web Design Business Kit *
> Find out how to price your work, market your business, make pitches that
> get the client, write effective proposals and beat the competition into
> the ground. Download 4 free sample chapters.
> http://sitepoint.com/launch/b7c91e/
>
> To advertise here: http://www.freelancers.net/advertising.html
>
>
> --
> * The Web Design Business Kit *
> Find out how to price your work, market your business, make pitches
> that get the client, write effective proposals and beat the competition
> into the ground. Download 4 free sample chapters.
> http://sitepoint.com/launch/b7c91e/
>
> To advertise here: http://www.freelancers.net/advertising.html
>
> Unsub: http://www.freelancers.net/rm.php?gp6AD7472EBA1720C003
>
> To Post a New Message: [EMAIL REMOVED]
> Forum Homepage: http://www.freelancers.net/forum.php
>
> http://www.freelancers.net - freelancers and freelance jobs
>
>
>

Messages by Day
November 30th 2003
November 29th 2003
November 28th 2003
November 27th 2003
November 26th 2003
November 25th 2003
November 24th 2003
November 23rd 2003
November 22nd 2003
November 21st 2003
November 20th 2003
November 19th 2003
November 18th 2003
November 17th 2003
November 16th 2003
November 15th 2003
November 14th 2003
November 13th 2003
November 12th 2003
November 11th 2003
November 10th 2003
November 9th 2003
November 8th 2003
November 7th 2003
November 6th 2003
November 5th 2003
November 4th 2003
November 3rd 2003
November 2nd 2003
November 1st 2003


Messages by Month
December 2003
November 2003
October 2003
September 2003
August 2003
July 2003
June 2003
May 2003
April 2003
March 2003
February 2003
January 2003


Messages by Year
2009
2008
2007
2006
2005
2004
2003
2002
2001
2000