Guys,
I am writing a database application(vb.net , sql server) and is presently
storing the connection settings in a xml file...not very secure though. What
is a safer method in a dynamic environment?
Dayne 9 3573
Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients
in one time.
And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb.net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients
in one time.
And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb.net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Cor,
Do you have any sample of encoding/encrypting a connection setting in an XML
file?
I have played with CMAB
( http://msdn.microsoft.com/library/de.../html/cmab.asp)
for encrypting xml files. But (from what I saw at least), only the machine
that did the encryption could decrypt the file. (This would work OK for a
web app, where the IIS server would do it. But no so useful for Windows
apps installed on multiple machines.)
Am I just missing something?
Greg
"Cor Ligthert" <no************@planet.nl> wrote in message
news:et**************@TK2MSFTNGP10.phx.gbl... Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients in one time. And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb.net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Cor,
Do you have any sample of encoding/encrypting a connection setting in an XML
file?
I have played with CMAB
( http://msdn.microsoft.com/library/de.../html/cmab.asp)
for encrypting xml files. But (from what I saw at least), only the machine
that did the encryption could decrypt the file. (This would work OK for a
web app, where the IIS server would do it. But no so useful for Windows
apps installed on multiple machines.)
Am I just missing something?
Greg
"Cor Ligthert" <no************@planet.nl> wrote in message
news:et**************@TK2MSFTNGP10.phx.gbl... Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients in one time. And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb.net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Greg,
CJ is in my opinion the encrypting expert from this newsgroup.
(However when you search for Rijndael on MSDN you find a lot of samples,
which you could not find before).
Cor
"Greg Burns" <greg_burns@DONT_SPAM_ME_hotmail.com> Cor,
Do you have any sample of encoding/encrypting a connection setting in an XML file?
I have played with CMAB (http://msdn.microsoft.com/library/de.../html/cmab.asp) for encrypting xml files. But (from what I saw at least), only the machine that did the encryption could decrypt the file. (This would work OK for a web app, where the IIS server would do it. But no so useful for Windows apps installed on multiple machines.)
Am I just missing something?
Greg
"Cor Ligthert" <no************@planet.nl> wrote in message news:et**************@TK2MSFTNGP10.phx.gbl... Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients in one time. And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb.net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Greg,
CJ is in my opinion the encrypting expert from this newsgroup.
(However when you search for Rijndael on MSDN you find a lot of samples,
which you could not find before).
Cor
"Greg Burns" <greg_burns@DONT_SPAM_ME_hotmail.com> Cor,
Do you have any sample of encoding/encrypting a connection setting in an XML file?
I have played with CMAB (http://msdn.microsoft.com/library/de.../html/cmab.asp) for encrypting xml files. But (from what I saw at least), only the machine that did the encryption could decrypt the file. (This would work OK for a web app, where the IIS server would do it. But no so useful for Windows apps installed on multiple machines.)
Am I just missing something?
Greg
"Cor Ligthert" <no************@planet.nl> wrote in message news:et**************@TK2MSFTNGP10.phx.gbl... Dayne,
Why is it not secure,
It is better than the registry because you can set it for a lot of clients in one time. And when you want to keep it secret you can encode it.
Just my thought
Cor I am writing a database application(vb.net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
I have tried something like this last year using registry and a wrapper class.
Please see my article here : http://www.codeproject.com/dotnet/En...tionString.asp
Hope this helps.
"Dayne" wrote: Guys,
I am writing a database application(vb.net , sql server) and is presently storing the connection settings in a xml file...not very secure though. What is a safer method in a dynamic environment?
Dayne
Cor,
Just tried it out. It does indeed work. I entrypted a value on one
machine, and a second was able to decrypt it.
Have no idea how secure it is, but it serves my needs.
Thanks!
Greg
"Cor Ligthert" <no************@planet.nl> wrote in message
news:%2****************@TK2MSFTNGP15.phx.gbl... Greg,
I saw this searching for something, I do not like to give snipets myself about encrypting and security.
http://groups.google.com/groups?selm...TNGP10.phx.gbl
I think this fits your question?
Cor This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: Sarah Tanembaum |
last post by:
I was wondering if it is possible to create a secure database system
using RDBMS(MySQL, Oracle, SQL*Server, PostgreSQL etc) and web
scripting/programming language(Perl, PHP, Ruby, Java, ASP, etc)...
|
by: Daniel Albisser |
last post by:
Hi @ll,
I was wondering why I lose the connection to the mail store while retrieving information from it
without
calling the method store.close()! At the end I found out that the method...
|
by: Dayne |
last post by:
Guys,
I am writing a database application(vb.net , sql server) and is presently
storing the connection settings in a xml file...not very secure though. What
is a safer method in a dynamic...
|
by: David Brinton |
last post by:
I need help with information on how to make a secure connection from a
VB application to a Microsoft Access database across either the internet
or a LAN.
I have read a lot of information about...
|
by: Seth |
last post by:
I have noticed that the id of my session object changes
when I switch from a non-secure to a secure connection.
What I'm trying to do:
I have a cookie that is built on the non-secure side of...
|
by: VB Programmer |
last post by:
I often use session variables to store the user's security level, and other
important info. How secure are session variables? Can someone decrypt it
and get the information? (This would be...
|
by: Holly |
last post by:
I copied this code that works to connect into Unix. I am looking for a
way to get it to work with a secure Unix box. Anyone have any insights
on how to do this? I am trying to build an sftp...
|
by: U S Contractors Offering Service A Non-profit |
last post by:
Brilliant technology helping those most in need Inbox
Reply
U S Contractors Offering Service A Non-profit
show details
10:37 pm (1 hour ago)
Brilliant technology helping those most in need ...
|
by: pawan123 |
last post by:
Hi,
I am using VB6 and SQL Server 2000.
I want to design a logon form. In this form, how can I use a Password field to store in encrypted form in tbluser table and how can I compare password...
|
by: Semnan Web Administrator |
last post by:
if the any server don't have the SSL protocols this method can be
used ...
the key of the cryption is the optional and will be change. for
example can be a hash of the client HTTP_USER_AGENT...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 3 Apr 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome former...
|
by: ryjfgjl |
last post by:
In our work, we often need to import Excel data into databases (such as MySQL, SQL Server, Oracle) for data analysis and processing. Usually, we use database tools like Navicat or the Excel import...
|
by: taylorcarr |
last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
|
by: ryjfgjl |
last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
|
by: ryjfgjl |
last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
|
by: emmanuelkatto |
last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud.
Please let me know.
Thanks!
Emmanuel
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
| |