Does anyone know of a site containing a list of asp secuirty issues and fixes? Im especially interested in finding out about downloading files directly by knowing their path. Example, if someone knows the path of my db, how can i stop them from downloading the file directly from the browser. Anything dealing with asp secuirty issues would be greatly appreciated! Thanks for any help/ suggestions!