(FP2002) UPLOAD sub-directory

[T. & D. Gregor, Sr.]

Trying to get my website’s (FP2002) UPLOAD sub-directory up and
running. I’ve followed the outline HOW TO: Upload Files to a Web
Server by Using FrontPage 2002 (Q299763).

I requested that the ISP change permissions to allow anonymous
uploads… however when I attempted to upload a file from my desktop PC
I was challenged by a password box. If I pop in the correct user &
password it does indeed work nicely.

However, what I’m after is true anonymous uploading of the occasional
file… without being challenged for a user name & password, which
certainly defeats the entire purpose.

Q: is this normal operation? Or is it a question of the ISP setting
permissions incorrectly?

TIA

Tom G, Sr.

 

[vey]

Trying to get my website’s (FP2002) UPLOAD sub-directory up and
running. I’ve followed the outline HOW TO: Upload Files to a Web
Server by Using FrontPage 2002 (Q299763).

I requested that the ISP change permissions to allow anonymous
uploads… however when I attempted to upload a file from my desktop PC
I was challenged by a password box. If I pop in the correct user &
password it does indeed work nicely.

However, what I’m after is true anonymous uploading of the occasional
file… without being challenged for a user name & password, which
certainly defeats the entire purpose.

Q: is this normal operation? Or is it a question of the ISP setting
permissions incorrectly?

TIA

Tom G, Sr.

I think what you are looking for is anonymous FTP. Most ISP's these days
have a "Control Panel" where you can set your own security (among other
things) settings. Often, there is an option to set one of the
directories for anonymous FTP. This means that people can upload and
download files without a password.

I would like to personally discourage your use of this action. Although,
Hackers, Crackers, Spammers, Malware writers and virus writers will love
you for it.

They will upload all sorts of files which you will not be able to see
and which will be difficult to delete. You won't know a thing about it
until your ISP sends you an overage bill.

These guys have spiders roaming the web, looking for anonymous FTP
servers to exploit.

How do I know this? Because it happened to me! I opened it up one time
to make things easy for the customer and forgot about it. Two weeks
later there was trouble.

So don't be dumb, like I was. Don't allow anonymous uploading for any
reason. It's not worth it.

 

[vey]

So don't be dumb, like I was. Don't allow anonymous uploading for any
reason. It's not worth it.

I forgot to ask, what are you trying to do? I had a site once where I
automatically uploaded webcam pics using FTP. I ran a program that would
upload a file every 5 minutes 24/7. It didn't need anonymous FTP to work.

 

[T. & D. Gregor, Sr.]

Good Morning junker:

I appreciate your words of caution. The object is to allow the
occasional file upload to the website. Not a very demanding
application. It isn't a question of can you or can't you... because it
can be done (according to Microsoft and their knowledge base article
that I referenced in my original post). What I'm trying to understand
is why I'm I being challenged by a password box?

And yes I to employ a camera with upload of the photographs via FTP.
Your comment "It didn't need anonymous FTP to work". was likely
because you provided the user name & password in a script to cycle the
FTP server.

BTW I'm aware of a few "other" avenues to pursue i.e.: ASP solutions.
But would prefer to employ the FP approach in this particular case.

Once again thank you for your interest.

Tom G, Sr.

 

[Thomas A. Rowe]

Did you create the upload form directly on the live/remote server?

--
==============================================
Thomas A. Rowe
Microsoft MVP - FrontPage

http://www.Ecom-Data.com
==============================================

 

[Tom Willett]

The bottom line, is your host has not set appropriate permissions. You need
to contact them.
--
===
Tom Willett
Microsoft MVP - FrontPage
---
FrontPage Support:
http://www.frontpagemvps.com/
===
|
| Good Morning junker:
|
| I appreciate your words of caution. The object is to allow the
| occasional file upload to the website. Not a very demanding
| application. It isn't a question of can you or can't you... because it
| can be done (according to Microsoft and their knowledge base article
| that I referenced in my original post). What I'm trying to understand
| is why I'm I being challenged by a password box?
|
| And yes I to employ a camera with upload of the photographs via FTP.
| Your comment "It didn't need anonymous FTP to work". was likely
| because you provided the user name & password in a script to cycle the
| FTP server.
|
| BTW I'm aware of a few "other" avenues to pursue i.e.: ASP solutions.
| But would prefer to employ the FP approach in this particular case.
|
| Once again thank you for your interest.
|
| Tom G, Sr.
|
|
|
|
| >vey wrote:
| >
| >> So don't be dumb, like I was. Don't allow anonymous uploading for any
| >> reason. It's not worth it.
| >
| >I forgot to ask, what are you trying to do? I had a site once where I
| >automatically uploaded webcam pics using FTP. I ran a program that would
| >upload a file every 5 minutes 24/7. It didn't need anonymous FTP to work.
|

 

[Kathleen Anderson [MVP - FrontPage]]

Is the desktop PC that you are trying this from the same one PC that you use
to edit and publish your web with? What happens if you try it from a
different PC?

--

~ Kathleen Anderson
Microsoft MVP - FrontPage
Spider Web Woman Designs
web: http://www.spiderwebwoman.com/resources/
Please reply to the newsgroup for the benefit of others.

 

[ducksigns]

Wow - I came to this forum to post almost the same question and I'm still
stumpped. I want to allow anonymous file uploads through a FP form. I hope
this is not subject to the same risks as anonymous FTP uploads.

If I unselect "Allow anonymous upload to this directory" property for the
upload folder, I get a window to log on when I use the form - I log on and it
works great. If I select "Allow Anaonymous upload to this directory" and use
the form, I get a Form Verification Error - Cannot create file upld.

My host has checked and said permissions are set properly from their end to
allow uploads to this directory.

Any ideas?

 

[T. & D. Gregor, Sr.]

Good Evening Tom et al:

The problem was as you suggest one attributable to an incomplete
action on the part of the ISP. When I checked this morning they
claimed to have completed my request to set "write" permissions for
the upload sub-folder. This resulted in me being challenged by the
user & password box. I later opened the site "live" and was please to
find that I now had access to the sub-folder's properties.

At this point I followed Microsoft’s Knowledge Base Article Q299763
recommendations as follows:

"6. On the View menu, click Folders. On the File menu, point to New
and then click Folder. A new folder appears in your Web. The cursor is
positioned for you to type the folder name. Type Uploads and press
ENTER.
7. Right-click the new folder and then click Properties on the menu
that appears. In the Properties dialog box, click to clear the Allow
scripts or programs to be run check box. Make sure the remaining check
boxes are selected (checked). Click OK.

NOTE: If the check boxes are shaded, verify that you opened or created
a Web. In Folder view, the first item in the Folder List pane should
show a URL (http://...), not a file path (C:\...).
8. On the View menu, click Page to edit your newly created Upload.htm
page. Switch to Normal view, if necessary, by clicking Normal at the
bottom of the FrontPage window".

The moral of this story... it ani't necessarily so. I guess that it's
best summed up by the cliché: Trust but Verify.

My thanks and appreciation to all who offered constructive suggestions
and advise. In my mind this is a unique newsgroup populated with
talented, helpful folks.

All The Best

Tom G, Sr.

 

[T. & D. Gregor, Sr.]

Good Evening Tom et al:

The problem was as you suggest one attributable to an incomplete
action on the part of the ISP. When I checked this morning they
claimed to have completed my request to set "write" permissions for
the upload sub-folder. This resulted in me being challenged by the
user & password box. I later opened the site "live" and was please to
find that I now had access to the sub-folder's properties.

At this point I followed Microsoft’s Knowledge Base Article Q299763
recommendations as follows:

"6. On the View menu, click Folders. On the File menu, point to New
and then click Folder. A new folder appears in your Web. The cursor is
positioned for you to type the folder name. Type Uploads and press
ENTER.
7. Right-click the new folder and then click Properties on the menu
that appears. In the Properties dialog box, click to clear the Allow
scripts or programs to be run check box. Make sure the remaining check
boxes are selected (checked). Click OK.

NOTE: If the check boxes are shaded, verify that you opened or created
a Web. In Folder view, the first item in the Folder List pane should
show a URL (http://...), not a file path (C:\...).
8. On the View menu, click Page to edit your newly created Upload.htm
page. Switch to Normal view, if necessary, by clicking Normal at the
bottom of the FrontPage window".

The moral of this story... it ani't necessarily so. I guess that it's
best summed up by the cliché: Trust but Verify.

My thanks and appreciation to all who offered constructive suggestions
and advise. In my mind this is a unique newsgroup populated with
talented, helpful folks.

All The Best

Tom G, Sr.