Server.Transfer, Response.Redirect, #Include, & Security?

[Bill]

I've got an application that I want to redirect to another file while
keeping the location of the file hidden. In other words,

WEBROOT.COM/REDIT.ASP?a=14

is going to display the contents of file
WEBROOT.COM/SECURE12954

without the user knowing they are in the /SECURE12954 subdir.

Which is better to protect that privacy the name of the /SECURE12954 subdir?

<%Server.Transfer("/SECURE12954")%>
or
<%Response.Redirect("/SECURE12954")%>
or
<!-- #include file="/SECURE12954" -->


Thanks,

-Bill.

 

[Joker]

I know the response redirect will change the address in the web browser
thus letting the user know what folder they are in. I'm not sure about
the other options. One other thing you might consider is placing
"SECURE12954" outside the web. The following address has some articles
about doing this http://www.aspfaq.com.

I've got an application that I want to redirect to another file while
keeping the location of the file hidden. In other words,

WEBROOT.COM/REDIT.ASP?a=14

is going to display the contents of file
WEBROOT.COM/SECURE12954

without the user knowing they are in the /SECURE12954 subdir.

Which is better to protect that privacy the name of the /SECURE12954 subdir?

<%Server.Transfer("/SECURE12954")%>
or
<%Response.Redirect("/SECURE12954")%>
or
<!-- #include file="/SECURE12954" -->


Thanks,

-Bill.

--
Please do not contact me directly or ask me to contact you directly for
assistance.

If your question is worth asking, it's worth posting.

If it’s not worth posting you should have done a search on
http://www.google.com/ http://www.google.com/grphp?hl=en&tab=wg&q= or
http://news.google.com/froogle?hl=en&tab=nf&ned=us&q= before wasting our
time.