ASP-Nuke Community v1.4 Installation & Upgrade Guide
Table of Contents
New 1st Time Installation
Welcome to the Community. Asp-Nuke Community is by definition, is just that, a Community of ASP-Nuke users and
webmasters who have come together to assist each other to make the ASP-Nuke source code the premier website code that money
can buy - $0.00!
The following, we hope, will assist you in your 1st time installation and setup of your ASP-Nuke website.
So lets begin.
- Download the ASP-Nuke Community 1.4 zip file, and placed it in a temporary location on your system. Unzip it
into the same temporary subdir you downloaded it to. Once unzipped you will find the subdir /nuke14 in the
temporary directory. In this subdir you will find all the ASP (Active Server Page) files, and support files
(css, mdb etc) and subdirs that will create your website. The /nuke14 subdir is basically an images of the
your new websites root directory (NT & W2K: c:\inetpub\wwwroot).
- Move/copy (by FTP or other means) all the files and subdirs located in the nuke14 subdir to your
websites root directory.
- To setup your website you will need to have write access to the following subdirs:
If your webserver is running on Microsofts IIS, and you are hosting the site on your own webserver then use
the following instructions to allow write access to these subdirs. To change the permissions on the server go to
Windows Explorer and do the following (for NT and Win 2K users only using NTFS file system, Win9x has no
permissions to change):
- Right click on the directory containing the database or text file.
- Click on 'Properties'.
- Choose the 'Security' tab form the dialog box window.
- Uncheck 'Allow inheritable permissions from parent to propagate to this object', from the bottom of the dialog box.
- Next, click on the 'Add' button at the top left of the window.
- Next the 'Select Users or Groups' dialog box will open, highlight 'IUSR_MyComputer' account from the list by clicking on it. Where 'MyComputer' is this will be the name of your computer. 'IUSER' is the Internet Guest Account setup by default when IIS is installed on the system.
- Next click on the 'Add' button in the middle left of the dialog box. You should then see 'MyComputer\IUSER_MyComputer' appear in the box in the bottom half of the dialog box. Again where 'MyComputer' is will be the name of your computer.
- Now click on the 'OK' button at the bottom right of the 'Select Users or Groups' dialog box.
- You should now be back at the 'Security Properties' dialog box where the top box should now contain the 'Internet Guest Account (MyComputer\IUSER_MyComputer)'.
- Highlight the 'Internet Guest Account (MyComputer\IUSER_MyComputer)' by clicking on it in the top box.
- Select 'Read' and 'Write' permissions for this account by checking the boxes at the bottom of the window (If you are not to worried about security you could check all the boxes to make sure that you have no problems with permissions).
- Next repeat all the steps above on the database or text file itself, to make sure the database or text file also has the correct permissions.
Windows XP Pro users please note: - Although the instructions above are for NT4/Win2k it is almost the same in XP Pro, but you must first turn off 'Simple File Sharing' from 'Folder Options' found in the Control Panel.
Security note: - For extra security to prevent hackers from downloading Access databases and getting hold of sensitive data like passwords, you should place any Access databases outside of the root of your web site in a private folder that is not accessible using a web browser.
If you are hosting your website on a Host ISP check with them about write permissions on your root directory and all additional subdirs that you may create.
- Once you have write permission you are ready to run the setup.asp file. In your web browser type http://yourwebsitename/setup.asp - This will bring up the installation web form.
Click here to see and print out the list of different variables that need to be definded in the setup.asp form: (space is given for you to write this info down before you run the setup.asp configuration routine)
Once you have entered all the information, and set the variables as you would like them, just press the Submit button at the bottom of the page. Your configuration-inc.asp file will be created and the Admin account will be added to the main.mdb.
- Now, it is time to reconfigure (remove) the write access to the /includes subdir.In this case you will reverse
the process where you set the write access.
To change the permissions on the server BACK TO THE ORGINAL SETTINGS, go to Windows Explorer and do the following (for NT and Win 2K users only using NTFS file system, Win9x has no permissions to change):
- Right click on the directory \includes
- Click on 'Properties'.
- Choose the 'Security' tab form the dialog box window.
- Check 'Allow inheritable permissions from parent to propagate to this object', from the bottom of the dialog box.
- Click on 'Apply'
- Highlight the 'Internet Guest Account (MyComputer\IUSER_MyComputer)' by clicking on it in the top box.
- Uncheck 'Write', from the bottom of the dialog box.
- Click on 'Apply'
- Click on OK and you are done.
You are now finished with the configuration, your website is ready to run, and it is now time for you apply the suggestions under Security Considerations; and to start playing with
the administration commands and menu items to fine tune the website to the way your want it to behave and look.
Good luck, and Enjoy!
Back to top
Conversion/Upgrade: v1.2 & v1.3 to v1.4
The following instructions apply equally to a conversion from v1.2 and v1.3.
We will assume the following conditions:
- You have followed the most common security method to protect your DB files by having them located in a subdir not named /db.
- You have followed the most common security method to protect your DB files by naming them other than main.mdb and forum.mdb.
- You have followed the most common security method to protect your DB files by setting a databse password.
[WARNING -- WARNING - If you are not doing all three of the items listed above - You are open to hacking. Go immediately to Security Considerations, do not pass GO, do not collect $100.00!]
So - let's get to work on upgrade/update...........
- If you are upgrading your ASP-Nuke v1.2 or v1.3 to v1.4 there are a few major housekeeping chores you will
need to do before you actually install convert your old main and forum databases for use with the v1.4 asp code.
- Download the ASP-Nuke Community 1.4 zip file, and placed it in a temporary location on your system.
Unzip it into the same temporary subdir you downloaded it to. Once unzipped you will find the subdir
/nuke14 in the temporary directory. In this subdir you will find all the ASP (Active Server Page)
files, and support files (css, mdb etc) and subdirs that will create your website. The /nuke14
subdir is basically an images of the new v1.4 websites /wwwroot directory.
- Make a complete backup copy of your old website. Copy everything into a temporary directory. What this
entails for most websites is making a copy of the /inetpub/wwwroot directory, including all files and
subdirectories under the ols website's root directory.
- Once you have made a backup copy of your old website root directory, you may then copy all the files
and subdir located in the /nuke14 subdir to your websites root directory. All the old v1.2 and v1.3
files and subdirs will be replaced with the newer version files and subdirs. This includes the /db
subdir & the main.mdb, and forum.mdb files located there. [Note: If you are still using the /db
subdir as the location of your DB file, this is a bad thing to be doing. Please see
Security Considerations.]
- Copy/move the newer main.mdb and forum.mdb, located in the /db subdir, to the database subdir
that you are using.
- Go into the /includes subdir under your websites root directory and rename the configuration-inc.asp to
configuration-inc.asp.old. You must do this so that you can run the setup.asp file. The variable contained
in the configuration-inc.asp have changed with v1.4, and you will need to re-create this again with the
v1.4 setup.asp file.
- Print out the old copy of the configuration-inc.asp file and have it handy when you run setup.asp. A
copy of the variable and items list that you will be configuring are can be seen
here, and you can use that list to assist you in
rebuilding the configuration-inc.asp for v1.4. Be sure to print it out.
- Make sure that you have write access to the /includes, /scripts and your database subdirs under your
websites root directory. To see how to set write access, click here.
- Run the new v1.4 setup.asp from your website. In your browser enter your website URL plus /setup.asp -
http://www.yoururl.com/setup.asp. This will bring up the setup form that will create the
configuration-inc.asp. Fill out the form.
- Since you will be upgrading, you will want to be sure to select 'Microsoft.Jet.OLEDB.4.0' for the
Database Provider variable. This is required for the conversion of your main and forum database
files.
- Type in your databaseb subdir name for the Databases directory variable. Format: /dbsubdir
- When you have set all the variables the way you want them, press "Submit" at the bottom of the form
page. Your new v1.4 configuration-inc.asp file will be created, and your new v.14 ASP-Nuke website will
be ready to run.
- Go to the temporary subdir that contains your backup copy of the old website files. Rename the main
database to something like mainold.mdb, and the forum database to something like forumold.mdb.
- Copy both of the renamed old main and forum database files to the database subdir on your new v1.4
website.
- Go into the /includes/admin subdir under your website's root directory and open the database-inc.asp
file in a text editor like Notepad. In the first subroutine you will see the following:
aDB(0) = DB_MAIN
aDB(1) = DB_FORUM
aDB(2) = "main_org" ' Test DB
aDB(3) = "forum_org" ' Test DB
Edit aDB(2) and aDB(3) with the names of your old database files. (we will assume that you
have used the names: mainold.mdb and forumold.mdb)
After editing the lines should look like this:
aDB(0) = DB_MAIN
aDB(1) = DB_FORUM
aDB(2) = "mainold" ' Test DB
aDB(3) = "forumold" ' Test DB
Save the edited database-inc.asp.
- Your housekeeping chores are now complete. You will now be converting your old main and forum databases for use
with v1.4 asp code.
- If you are converting from v1.2 there is one thing you may want to consider - Using UpdateMain.exe which is
included in the zip file UpdateMain_1.2.zip. This program will update v1.2 DB to v1.3. Then when you do the next
section of the upgrade to v1.3, you need only perform the v1.3 to v1.4 Database Upgrade Script. Here is a copy of
the instructions included with the v1.2 to v1.3 UpdateMain.exe:
Update aspnuke v1.2 Main.mdb to aspnuke v1.3 main.mdb
This program will upgrade your main.mdb to the main.mdb for aspnuke v1.3
It will make all the changes and add all the new tables into your old main.mdb.
REMEMBER to make Backup of your old main.mdb before you try to update the main.mdb.
This program is on a ASIS policy, no help, and I take no responsibility for damaged data.
Requiremt for this program
Included in this package:
COMDLG32.OCX
To install this:
REGSVR32 /I comdlg32.ocx
To uninstall this:
REGSVR32 /U comdlg32.ocx
Only install if you do not have this installed on your computer
You have to have this on your computer:
DAO v3.6
VBRUN v6.0
The UpdateMain.mdb need to be in the same folder as the Updatemain.exe program.
Mr.Spock / Rolf Thomassen
MrSpock(at)rediffmail.com
http://www.rot.dk
|
If you decide to use the Updatemain.exe to speed up your upgrade/update, then you need only use the v1.3 to v1.4
Database Upgrade Script in the next section to finish your upgrade/update.
- In this section you will be using the one of the following two files in a "cut'n paste" method:
You may want to print the one you will be using to assist you.
So - let's get to work...........
- Start up your web browser, and link into your website.
- Log on as admin.
- Go into the Administration section and in the Admin Control Panel click on Database.
- Open the Database Upgrade Script file you will be using in a text editor like Notepad, and be ready to
switch back-n-forth between it and your web browser.
- Switch back to your web browser and in the Database dialog box select forumold.
- Switch back to the Database Upgrade Script file and highlite the first forum db query, copy it.
- Switch back to your web browser, and paste the query in to the Query box.
- Click on "Submit".
- Switch back to the Database Upgrade Script file and highlite the next forum db query, copy it.
- Switch back to your web browser, and paste the query in to the Query box.
- Click on "Submit".
- Repeat instructions i, j, and k until you have done all the forum db query's.
- Now, in the Database dialog box select mainold.
- Switch back to the Database Upgrade Script file and highlite the first main db query, copy it.
- Switch back to your web browser, and paste the query in to the Query box.
- Click on "Submit".
- Switch back to the Database Upgrade Script file and highlite the next main db query, copy it.
- Switch back to your web browser, and paste the query in to the Query box.
- Click on "Submit".
- Repeat instructions q, r, and s until you have done all the main db query's.
- Once you have used all the querys and completed the DB upgrades, log off your website and close your web browser.
You are now finished with the DB upgrade, and it's now time to rename your upgraded DB files to the names you will
actually be using, and setting these names in the configuration-inc.asp.
- Go into your website's database subdir and rename the mainold.mdb and forumold.mdb to the names you will be
using.
- Now move into your website's /includes subdir and open the file configuration-inc.asp in a text editor like Notepad.
- Look for the following lines:
' Database path
Const GLOBAL_SITE_DATABASE_PATH = "/your_DB_dir"
' Database constants
Const DB_PROVIDER = "4.0" ' Supports: access, 4.0 , (later SQL)
Const DB_SERVER = ""
Const DB_USER = ""
' For security, make a Password for your DBs
Const DB_PASSWORD = "your-password" ' Enter you DB password here
Const DB_MAIN = "main"
Const DB_FORUM = "forum"
Set the DB_MAIN and DB_FORUM constants to the names you gave your DB files. So that it looks like this:
' Database path
Const GLOBAL_SITE_DATABASE_PATH = "/yourDBdir"
' Database constants
Const DB_PROVIDER = "4.0" ' Supports: access, 4.0 , (later SQL)
Const DB_SERVER = ""
Const DB_USER = ""
' For security, make a Password for your DBs
Const DB_PASSWORD = "your-password" ' Enter you DB password here
Const DB_MAIN = "your_main_name"
Const DB_FORUM = "your_forum_name"
[Note: Do not include the .mdb extension.]
Start your web browser again, and go to your website. It should not be working with the upgraded DB files. Login as admin. You can now start configuring the v1.4 website to the way you want it to appear and behave.
Guess what.... Congratulations!........ You are finshed... Enjoy - Live Long and Prosper.........
Back to top
Security Considerations [Important]
It is imperative that you protect your databases from being hacked or downloaded.
Within your MAIN.MDB is the Administrators password, as well as the passwords of all individuals that have signed up on
your website.
If a hacker were to download and then open your MAIN.MDB, they would then be able to logon to your ASP-Nuke website as
Admin and basically destroy the website. [Basic case of a loser with no life - a poor excuse of a human being and nothing
better to do to qualify themselves and their existence.]
All users of ASP-Nuke should protect their db folder when they upload the files to their server. If you dont secure your
db file, someone will steal them and then hack into your website.
Here are a few ways to protect it.
Read: http://www.thomassens.dk/nuke13/forum/Forum.asp?forum=1§ion=18&post=289
Read: http://www.4guysfromrolla.com/webtech/022300-1.shtml
The most common ways to protect the db folder are:
- If you host your own website
- Change the name of the db folder (dont tell anybody the name), use numbers, letters
what ever you want.
- Change the name of the main.mdb and forum.mdb in the new DB folder. Again dont tell anybody what you change it to.
- If your website is hosted on an ISP
- Ask your hosting provider to password protect your DB folder for you (Some may charge
a small fee, some may not provide this service, depends on your hosting company), you can
usually do it yourself in your control panel (provided by hosting company).
- Most Hosting companies also provide a secure folder on the server outside the root
directory (this folder cannot be accessed from anyones browser), usually called
"Private", ask your hosting company about this.
If
you have changed the name of the DB subdir, you will need to go to the /includes subdir of your websites root directory and open the configuration-inc.asp file and modify the following line:
Const GLOBAL_SITE_DATABASE_PATH = "/db"
Change it to contain your new subdir:
Const GLOBAL_SITE_DATABASE_PATH = "/what_ever_your_new_special_DB_dir_name_is"
If you have changed the names of the DB files, you will need to go to the /includes subdir of your websites root directory and open the configuration-inc.asp file and modify the following line:
ConstDB_MAIN = "main"
ConstDB_FORUM = "forum"
Change it to contain your DBs new names:
Const DB_MAIN = "what_ever_your_new_main_DB_name_is"
Const DB_FORUM = "what_ever_your_new_forum_DB_name_is"
[Note: Do not include the .mdb extension.]
Further you should password protect your databases. Open each database via MS Access in Open Exclusive mode. Once opened, select
- Tools
- Security
- Set Database Password
then enter the password.
Use the same password for both the main.mdb and forum.mdb. Be sure that it is the password you entered for the DB password during your configuration of the website using /setup.asp.
If you failed to enter a DB password when you ran /setup.asp, go to the /includes subdir of your websites root directory and open the configuration-inc.asp file and modify the following line:
Const DB_PASSWORD = ""
Change it to contain your DB password:
Const DB_PASSWORD = "your-password"
These are just a few ways to protect your DB folder, but no matter what do it.
This should be one of the first things you do when you upload your website to your server.
Back to top
Most Common Install/Upgrade Errors
- ASP 0131 - Active Server Pages error - Disallowed Parent Path
- Solution: http://msdn.microsoft.com/library/default.asp?url=/library/en-us/csvr2002/htm/cs_mmc_troubleshooting_owdd.asp
Back to top
Alpha & Beta Testers
abu3athal, awol, cava, davidlopes, Dryparn, falconnl, flemming, fmarie, green, gsig, hoover (Karl Finefrock), jhavn, joigud, lapucami, Lazze, M4H Consulting, Michael, miciver, Mr.Spock (Rolf Thomassen), MrHard, NeophyteHeaven, Nodelock, Ole, PerTang, po6333, rnawky, serim, SiteMaster, spix, sobreira, thanos, thomas26, VaBene, Wayfarer, weta1984, winriders
Back to top
Document Contributors & Sources
Contributors: | Mr.Spock (Rolf Thomassen), Hongwanji (Dave De Wald) |
Sources: | http://www.webwizguide.info, http://www.thomassens.dk/nuke13/, http://www.rot.dk/nuke14/ |
Back to top
Copyright Notice
************************************************************************
* ASP-Nuke: Free web portal in ASP *
************************************************************************
* Copyright (c) 2002-2003 by Gaetan Bouveret (webmaster@asp-nuke.com) *
* http://www.asp-nuke.com *
* *
* This program is free software. You can redistribute it and/or modify *
* it under the terms of the GNU General Public License as published by *
* the Free Software Foundation; either version 2 of the License, or *
* (at your option) any later version. *
* *
************************************************************************
Back to top
Last revised: June 15, 2004