|
dev
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Remote DB Access SecurityI have set deployed my application in shared hosting environment.
I have, currently, configured connection to remote sql server db in web.config. My concern is, 1) Since db username/password is in web.config, is there a way for someone to see it? 2) Can the password be intercepted during network communication? Is encryption deterent to password interception? How do you specify it? Considering my operating environment, is there more secure sql server db access configuration? Thanks in advance "Roman" <rgelfa***@hotmail.com> wrote in message Possibly, but they will likely have to compromise the server. If this is news:1155072670.672024.30300@b28g2000cwb.googlegroups.com... >I have set deployed my application in shared hosting environment. > I have, currently, configured connection to remote sql server db in > web.config. > > My concern is, > > 1) Since db username/password is in web.config, is there a way for > someone to see it? ASP.NET 2.0, see if you can encrypt the conn string. > 2) Can the password be intercepted during network communication? Is Intercepted. Unlikely, as this is internal to your provider. Encrypting will > encryption deterent to password interception? How do you specify it? not stop sniffing, but it has to be done on the inside, so I would not be overly concerned. If this is a high security app, I would consider paying more and having your own server, virtual or real. -- Gregory A. Beamer MVP; MCP: +I, SE, SD, DBA ************************************************* Think outside the box! *************************************************  |
|||||||||||||||||||||||
Other interesting topics