Guys,
I am writing a database application(vb. net , sql server) and is presently
storing the connection settings in a xml file...not very secure though. What
is a safer method in a dynamic environment?
Dayne 9 3593
Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients
in one time.
And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb. net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients
in one time.
And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb. net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Cor,
Do you have any sample of encoding/encrypting a connection setting in an XML
file?
I have played with CMAB
( http://msdn.microsoft.com/library/de.../html/cmab.asp)
for encrypting xml files. But (from what I saw at least), only the machine
that did the encryption could decrypt the file. (This would work OK for a
web app, where the IIS server would do it. But no so useful for Windows
apps installed on multiple machines.)
Am I just missing something?
Greg
"Cor Ligthert" <no************ @planet.nl> wrote in message
news:et******** ******@TK2MSFTN GP10.phx.gbl... Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients in one time. And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb. net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Cor,
Do you have any sample of encoding/encrypting a connection setting in an XML
file?
I have played with CMAB
( http://msdn.microsoft.com/library/de.../html/cmab.asp)
for encrypting xml files. But (from what I saw at least), only the machine
that did the encryption could decrypt the file. (This would work OK for a
web app, where the IIS server would do it. But no so useful for Windows
apps installed on multiple machines.)
Am I just missing something?
Greg
"Cor Ligthert" <no************ @planet.nl> wrote in message
news:et******** ******@TK2MSFTN GP10.phx.gbl... Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients in one time. And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb. net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Greg,
CJ is in my opinion the encrypting expert from this newsgroup.
(However when you search for Rijndael on MSDN you find a lot of samples,
which you could not find before).
Cor
"Greg Burns" <greg_burns@DON T_SPAM_ME_hotma il.com> Cor,
Do you have any sample of encoding/encrypting a connection setting in an XML file?
I have played with CMAB (http://msdn.microsoft.com/library/de.../html/cmab.asp) for encrypting xml files. But (from what I saw at least), only the machine that did the encryption could decrypt the file. (This would work OK for a web app, where the IIS server would do it. But no so useful for Windows apps installed on multiple machines.)
Am I just missing something?
Greg
"Cor Ligthert" <no************ @planet.nl> wrote in message news:et******** ******@TK2MSFTN GP10.phx.gbl... Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients in one time. And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb. net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Greg,
CJ is in my opinion the encrypting expert from this newsgroup.
(However when you search for Rijndael on MSDN you find a lot of samples,
which you could not find before).
Cor
"Greg Burns" <greg_burns@DON T_SPAM_ME_hotma il.com> Cor,
Do you have any sample of encoding/encrypting a connection setting in an XML file?
I have played with CMAB (http://msdn.microsoft.com/library/de.../html/cmab.asp) for encrypting xml files. But (from what I saw at least), only the machine that did the encryption could decrypt the file. (This would work OK for a web app, where the IIS server would do it. But no so useful for Windows apps installed on multiple machines.)
Am I just missing something?
Greg
"Cor Ligthert" <no************ @planet.nl> wrote in message news:et******** ******@TK2MSFTN GP10.phx.gbl... Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients in one time. And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb. net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
I have tried something like this last year using registry and a wrapper class.
Please see my article here : http://www.codeproject.com/dotnet/En...tionString.asp
Hope this helps.
"Dayne" wrote: Guys,
I am writing a database application(vb. net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Cor,
Just tried it out. It does indeed work. I entrypted a value on one
machine, and a second was able to decrypt it.
Have no idea how secure it is, but it serves my needs.
Thanks!
Greg
"Cor Ligthert" <no************ @planet.nl> wrote in message
news:%2******** ********@TK2MSF TNGP15.phx.gbl. .. Greg,
I saw this searching for something, I do not like to give snipets myself about encrypting and security.
http://groups.google.com/groups?selm...TNGP10.phx.gbl
I think this fits your question?
Cor This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: Sarah Tanembaum |
last post by:
I was wondering if it is possible to create a secure database system
using RDBMS(MySQL, Oracle, SQL*Server, PostgreSQL etc) and web
scripting/programming language(Perl, PHP, Ruby, Java, ASP, etc) combination?
I have the following in mind:
I wanted to store all my( and my brothers and sisters) important
document
information such as birth certificate, SSN, passport number, travel
documents, insurance(car, home, etc) document, and other...
|
by: Daniel Albisser |
last post by:
Hi @ll,
I was wondering why I lose the connection to the mail store while retrieving information from it
without
calling the method store.close()! At the end I found out that the method folder.close(boolean) also
close the store!
Following you see the debug log of the JavaMail API:
> C: QUIT
|
by: Dayne |
last post by:
Guys,
I am writing a database application(vb.net , sql server) and is presently
storing the connection settings in a xml file...not very secure though. What
is a safer method in a dynamic environment?
Dayne
|
by: David Brinton |
last post by:
I need help with information on how to make a secure connection from a
VB application to a Microsoft Access database across either the internet
or a LAN.
I have read a lot of information about securing connections but none of
the information has gotten specific enough as to tell me whether or not
I can use it for a VB app to MS Access db link.
The first thought that came to mind was just to set up a VPN. It feels
like there should be...
|
by: Seth |
last post by:
I have noticed that the id of my session object changes
when I switch from a non-secure to a secure connection.
What I'm trying to do:
I have a cookie that is built on the non-secure side of
things. What I need to do is to switch to a secure
connection and then later on while still in that secure
connection delete the cookie that was created on the non-
secure side. I need to do this because I can not
reference the non-secure cookie...
| |
by: VB Programmer |
last post by:
I often use session variables to store the user's security level, and other
important info. How secure are session variables? Can someone decrypt it
and get the information? (This would be especially important to know if the
session vars contain things like credit card numbers.)
Any better, more secure alternatives? How would you store credit card
numbers etc... temporarily if not using session vars?
Thanks!
|
by: Holly |
last post by:
I copied this code that works to connect into Unix. I am looking for a
way to get it to work with a secure Unix box. Anyone have any insights
on how to do this? I am trying to build an sftp service.
Thanks
Holly
Imports System
Imports System.Net
Imports System.IO
|
by: U S Contractors Offering Service A Non-profit |
last post by:
Brilliant technology helping those most in need Inbox
Reply
U S Contractors Offering Service A Non-profit
show details
10:37 pm (1 hour ago)
Brilliant technology helping those most in need Inbox
Reply
from Craig Somerford <uscos@2barter.net>
hide details 10:25 pm
(3 minutes ago)
|
by: pawan123 |
last post by:
Hi,
I am using VB6 and SQL Server 2000.
I want to design a logon form. In this form, how can I use a Password field to store in encrypted form in tbluser table and how can I compare password text in this table?
Please tell me how I can use encode/decoder algorithm to secure password.
User form coding is as follows :-
|
by: Semnan Web Administrator |
last post by:
if the any server don't have the SSL protocols this method can be
used ...
the key of the cryption is the optional and will be change. for
example can be a hash of the client HTTP_USER_AGENT and REMOTE_ADDR
and more... as the same key.
if you want to put the secure data in the normal page it's useful
method.
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look !
Part I. Meaning of...
| |
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed.
This is as boiled down as I can make it.
Here is my compilation command:
g++-12 -std=c++20 -Wnarrowing bit_field.cpp
Here is the code in...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth.
The Art of Business Website Design
Your website is...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules.
He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms.
Adolph will...
|
by: conductexam |
last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one.
At the time of converting from word file to html my equations which are in the word document file was convert into image.
Globals.ThisAddIn.Application.ActiveDocument.Select();...
| |
by: muto222 |
last post by:
How can i add a mobile payment intergratation into php mysql website.
|
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
| |