⭐ 欢迎来到虫虫下载站! | 📦 资源下载 📁 资源专辑 ℹ️ 关于我们
⭐ 虫虫下载站
📤 上传资源

📄 conn.ist

📁 1、本系统采用经典ASP+ACC/SQL编写
💻 IST
字号:
🔍 
<%@LANGUAGE="VBSCRIPT" CODEPAGE="65001"%>
<%
Option Explicit
Response.buffer=True
Response.Charset="utf-8"
IF InstalledDll=False Then Response.Redirect("install.asp")
'' 一 修改安全设置  
''------------------------------------------------
Const SafeCode=1       '安全设置:0-关闭,1-开启
''------------------------------------------------  
'' 二 修改数据库类型  
''------------------------------------------------
Const DataType={k_sqltype}       '数据类型:0-ACC,1-SQL
''------------------------------------------------  
Dim connstr,conn,Sday
   If DataType=0 then
   Sday="'d'"
      Dim Db
'' 三 修改Access数据库 
''------------------------------------------
       Db="{k_sitepath}{k_accpath}"      'AC数据库地址
''------------------------------------------
       connstr = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Server.MapPath(Db)
   Elseif DataType=1 then
   Sday="day"
      Dim DateUserID,DateUserPsd,DateCatalog,DateSource
'' 四 修改SQL数据库 
''------------------------------------------  
       DateUserID="{k_user}"            'SQL用户名
       DateUserPsd="{k_pass}"       'SQL用户密码
       DateCatalog="{k_catalog}"          'SQL数据库名
       DateSource="{k_source1}"    'SQL数据库地址
''------------------------------------------ 
       connstr = "Provider = Sqloledb; User ID = "&DateUserID&"; Password = "&DateUserPsd&"; Initial Catalog = "&DateCatalog&"; Data Source = "&DateSource&"{k_port};"
   End if
'' 五 修改表名前缀 
''------------------------------------------  
Const predb="{k_predb}"

Sub Opendb()
	On Error Resume Next
	Set Conn = Server.CreateObject("ADODB.Connection")
	Conn.Open Connstr
	If Err Then
		Err.Clear
		Set Conn = Nothing
		IF DataType=-1 Then Response.Redirect("install.asp") Else Response.Write("数据库链接错误")
		Response.End
	End If
End Sub

Sub Closedb()
  IF IsObject(conn) Then
    conn.close
    Set conn=Nothing
  End IF
End sub

IF SafeCode=1 Then
	Dim My_Sqlchr,My_Sqlchrs,My_ChrContent,My_i,ScriptType
	My_Sqlchr = "select*|and'|or'|insertinto|deletefrom|altertable|update|createtable|createview|dropview|createindex|dropindex|createprocedure|dropprocedure|createtrigger|droptrigger|createschema|dropschema|createdomain|alterdomain|dropdomain|);|select@|declare@|print@|char(|select"
	My_Sqlchrs = split(My_Sqlchr,"|")
	ScriptType=Trim(Request.QueryString("act"))
	IF Instr(ScriptType,"upfileF")<1 then
	If Request.Form<>"" Then
	   For Each My_ChrContent In Request.Form
		 For My_i=0 to Ubound(My_Sqlchrs)
		   Select Case My_Sqlchrs(My_i)
		   Case "select"'为避免select的多表关联查询
			  If Instr(LCase(replace(Request.Form(My_ChrContent)," ","")),"select")>0 and Instr(LCase(replace(Request.Form(My_ChrContent)," ","")),"from")>0 Then
				Call My_Title()
			  End IF	   
		   Case "update"'update作额外处理,因update..set..
			  If Instr(LCase(replace(Request.Form(My_ChrContent)," ","")),"update")>0 and Instr(LCase(replace(Request.Form(My_ChrContent)," ","")),"set")>0 Then
				Call My_Title()
			  End IF		  
		   Case Else
			  If Instr(LCase(replace(Request.Form(My_ChrContent)," ","")),My_Sqlchrs(My_i))>0 Then
				Call My_Title()
			  End IF
		   End Select
		 Next
	   Next	   
	End IF
	End IF
	If Request.QueryString<>"" Then
	   For Each My_ChrContent In Request.QueryString
		 For My_i=0 to Ubound(My_Sqlchrs)
		   Select Case My_Sqlchrs(My_i)
		   Case "select"'为避免select的多表关联查询
			  If Instr(LCase(replace(Request.QueryString(My_ChrContent)," ","")),"select")>0 and Instr(LCase(replace(Request.QueryString(My_ChrContent)," ","")),"from")>0 Then
				Call My_Title()
			  End IF	   
		   Case "update"'update作额外处理,因update..set..
			  If Instr(LCase(replace(Request.QueryString(My_ChrContent)," ","")),"update")>0 and Instr(LCase(replace(Request.QueryString(My_ChrContent)," ","")),"set")>0 Then
				Call My_Title()
			  End IF		  
		   Case Else
			  If Instr(LCase(replace(Request.QueryString(My_ChrContent)," ","")),My_Sqlchrs(My_i))>0 Then
				Call My_Title()
			  End IF
		   End Select
		 Next
	   Next	   
	End IF
End IF

Sub My_Title()
  response.Write "<script>alert('安全限制,如不需要请到conn.asp关闭!');history.go(-1)</script>"
  response.End()
End Sub

Function InstalledDll()
    Dim xTestObj
    On Error Resume Next
    InstalledDll = False
    Err = 0
    Set xTestObj = Server.CreateObject("KwAsk.Install")
    If Err = 0 Then InstalledDll = True
    If Err = -2147352567 Then InstalledDll = True
    Set xTestObj = Nothing
    Err = 0
    Exit Function
End Function
%>

⌨️ 快捷键说明

复制代码 Ctrl + C
搜索代码 Ctrl + F
全屏模式 F11
切换主题 Ctrl + Shift + D
显示快捷键 ?
增大字号 Ctrl + =
减小字号 Ctrl + -