conn.asp

学校网站源码fdfdffdfdfdfdfdfdfdf

<%
response.buffer=true
Const Version="Version 8.1"
Const Edition="多风格版"
Const ACCESSPATH="data/#Huaihi.asa"              '数据库路径
Const BACKACCESSPATH="backdata/yecao.mdb"    '数据库备份路径




On Error Resume Next
Set conn=Server.CreateObject("ADODB.Connection")
conn.Open "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Server.MapPath(ACCESSPATH)
If Err Then
err.Clear
Set Conn=Nothing
response.Redirect"error.asp?action=error&text=数据库连接出错，请检查连接字串!" 
response.End
End If
sub pass()
'网站是否打开
if web=1 then
response.Redirect"error.asp?action=stop&text="&webwords&"" 
response.End
end if
'IP地址限制访问
request_ip=request.servervariables("remote_addr")
re_ip=split(replace_ip,"|")
for i=0 to ubound(re_ip)
if right(re_ip(i),1)="*" then
if left(re_ip(i),6)=left(request_ip,6) then
response.Redirect"error.asp?action=stop&text=对不起，您的IP已封锁!" 
response.End
end if
elseif re_ip(i)=request_ip then
response.Redirect"error.asp?action=stop&text=对不起，您的IP已封锁!"
response.End
end if
next
end sub

Function yecaosql()
sql_in=split("'|and|exec|insert|select|delete|update|count|*|%|chr|mid|master|truncate|char|declare","|")
if Request.QueryString<>"" then
for each sql_get in Request.QueryString
for sql_data=0 to ubound(sql_in)
if instr(LCase(Request.QueryString(sql_get)),sql_in(sql_data))>0 then
Huaihi_url("error.asp?action=back&text="&server.urlencode("对不起！请不要在参数中包含非法字符尝试注入！"))
Response.End()
end if
next
next
end if
End Function

Function Encode(content)
dim tmp
tmp=content
tmp=replace(tmp,"<","&lt;")
tmp=replace(tmp,">","&gt")
tmp=replace(tmp,"'","")
tmp=replace(tmp,"char(34)","")
Encode=tmp
End Function
%>