Thanks - I see from BOL that "SSL encryption works only with instances of
SQL Server 2000 running on a computer that has been assigned a certificate
from a public certification authority. The computer on which the application
is running must also have a root CA certificate from the same authority."
Without going into details right now, would it possible for me to distribute
the client certificate with my application (or does this require hands-on
configuring on the client PCs)?
I also see mention that "multi-protocol" has its own encryption that does
not require certificates. Would this be an option (SQL2000)?
Paul.
"Robert Porter" <rh******@noemail.nospam> wrote in message
news:ur*************@TK2MSFTNGP15.phx.gbl...
Paul W wrote: Hi - I need to distribute to customers a VB.net program that will access
a
SQL db that is available out on the internet. The db uses SQL
authentication.
What would I need to do to protect the SQL login credentials from
'snooping'. I guess I need to protect them from the end user, and from
network snoopers during transmission over the internet.
Any pointers much appreciated.
Paul.
At the very least you will want an SSL connection. Preferrably via a VPN
as opposed to direct. The SQL Libraries support encrypted connections,
check Books online or reply back here for specific.