1、 附录 外文原文 : The exploitation criteria and security management of the asp Exploitation criteria : Application servers have been, or ultimately will be used in Web server, which usually operate in the IIS ASP page computer. ASP is the only object of your client. It offers specialized systems and securi
2、ty considerations. While many of the Web sites use ASP simply not components, but in this article that ASP is the Internet as a bridge between the client and components. The following ASP components Guidelines (English) : ASP and the division of services between components ASP server in the most com
3、monly used building for the client to use HTML or XML documents, so we focused on the use of the program. This leads to a common problem, if ASP page on the server, then they are part of the operational level? Components in the world, the answer usually is not. Although the ASP server is in operatio
4、n, but may be related to space applications in the same server, but it can not make it a part of the business logic. With user interface development tool, or as the opening of more business to operational programs with the clear distinction will be tremendous returns. Let us look at some of the most
5、 important operational level and that level division guidelines : Separation of the UI code and business logic. This includes preparation coupled with the UI code, such as the use of ASP components MTS internal target it with the business logic code separation, as in a different DLL. affair will be
6、separated with the ASP page. Services ASP in certain cases beyond compare, but the components and multi-storey applications will change this situation. Components should not be dependent on the client layer to manage their affairs and business logic semantics. Will be expressed components (use solic
7、it and responsive components) and Web server on the same machine and / or tenor. If the use of ASP internal components of the target objects on remote machines, then all of the internal components will be available in retail form. Server client access is COM+ server, which significantly reduced the
8、performance and security of complicated. These markings will be lay in COM+ applications mark as library activated . ASP exist in server, ASP pages must be consistent with resource sharing rules, and remember to flexibility. Look at the following details : In the conversation, management should avoi
9、d user specific state. Keep ASP stateless and where possible to allow resources pool. Mode operation: In evaluating whether a code of business logic layer or expressed, may I ask myself: If I have to use click-phone applications to replace my ASP page, then the code are there? If the answer is yes ,
10、 then it could try to business logic code into machine code or user interface to help. If changed after the client code can not be used, or if it is constructed with the help of the user interface, the code is expressed services layer. It ASP page, or in the internal components used ASP components.
11、It does not belong to the operational targets of components. Understanding of the distinction between desktop and ASP client It was modular incumbent engine, different tables top tradition uniline ran win32 application from that asp. Key distinction generalize as follows: Thread management : ASP is
12、a multi-client threads. This means that it can have many activities in the operation, perhaps at the same time dealing with different ASP page. This shows that it is not the only pseudo-objects to exclusive system users. This may be unexpected reactions, for example, into a bad habit : the object st
13、ored in ASP application variables or conversation. Security environment : ASP is the Web site of the Internet Information Services 5.0 implementation, a low, medium, high three separate degrees. The Web site can even have different security setup, or refuse to allow anonymous access, for customer an
14、d so on. All these have generated a lot of programs, namely, the use of different end-user account is your object. Easy rose : This is not a technical issue, but Web applications provide facilities Deputy effect. Traditionally, the increase in user base for desktop applications, the number of reques
15、ts carefully planned well known to the client transferred. ASP has changed the process in motion and operational, ASP-Visual Basic applications can be conveniently opened for local or worldwide for all staff, all business partners and customers all use. This approach can be used to describe - owned
16、super links individual e-mail users can make a tenfold increase in the base. To prepare for your applications?The only way to understand the intensity of Web sites for testing to obtain the expected value of the actual performance. Detailed information on the intensity of the test, please refer to t
17、he application life cycle section. In the use of Visual Basic ASP should target? In the context of the establishment and abolition of pages of your audience.In other words, as far as possible so that no state ASP pages only in a state of dependence conversation or temporary applications variables. N
18、ot to target storage applications in English or variables. This will lock in your conversation ASP systems, the expected value of flexibility may cancel all. In other words, the Web servers handle no more than a few dozens of users. If required, in English or applications stored content, please turn
19、 it into the data rather than objects. There are many other criteria can be observed. We recommend that you read MSDN Voices, .J.D. Meier compose the column ServinIt Up. The column includes a lot of technology, practice and skills development can contribute to the expansion and reliable ASP componen
20、ts and applications. Not to be quoted or applications memory at conversation all the inserted object components are Visual Basic 6.0 cell thread, that is to say they are operating in the Inter module. This means that if the thread established targets, then the object of all resources must use the sa
21、me threads. Many threads (from it Web site users) use the same examples Agency targets, raises a series of activities, the application process may become bottlenecks. In addition, in conversation with Server .Create Object stored within the object STA to be implemented threads can be effectively lin
22、ked to the current user, thus it will be the largest applications to give users a few restrictions the 20xN (N = number of processors). Mode operation: If you according to our suggest to take object stateless, are not used for storage of a client, and stored in the context of their applications. Cli
23、ent will be able to establish an independent, use and cancellation of their own target. This reduces the need for maintaining conversation - because they do not retain the skills unique to the state. Recommended approach is to target a state, it needs a database or other storage area to visit (such as cookies and LDAP). If applications require the use of English or the scope of the data, the data should instead deal with the subject of data stored in it. The dispose of the you could begin one genera, came encapsulation versus desirable value. ASP security management :
