S
Selen
In asp.net what is the best way for storing connection string?
Thanks....
Thanks....
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
C
Cor Ligthert
Hi Selen,
In my opinion the best way that fits you the best and which not does show it
outside your environment.
Cor
In my opinion the best way that fits you the best and which not does show it
outside your environment.
Cor
J
John Timney \(Microsoft MVP\)
In the web.config file for the application.
--
Regards
John Timney
Microsoft Regional Director
Microsoft MVP
--
Regards
John Timney
Microsoft Regional Director
Microsoft MVP
R
Rick Spiewak
But consider using DPAPI to encrypt the string if you're including id's and
passwords in it. Also, be sure to write a custom error page so that
configuration exceptions don't reveal contents from your web.config file.
passwords in it. Also, be sure to write a custom error page so that
configuration exceptions don't reveal contents from your web.config file.
J
John Timney \(Microsoft MVP\)
Indeed securing your actual connection strings as Rick suggests is also
something you might want to consider.....
If the servers yours, then you can use the utilities that come with asp.net
to provide password encryption.
http://support.microsoft.com/default.aspx?scid=kb;en-us;329290
If its not, then you will need to think about a custom encryption approach
that works for your setup.
--
Regards
John Timney
Microsoft Regional Director
Microsoft MVP
something you might want to consider.....
If the servers yours, then you can use the utilities that come with asp.net
to provide password encryption.
http://support.microsoft.com/default.aspx?scid=kb;en-us;329290
If its not, then you will need to think about a custom encryption approach
that works for your setup.
--
Regards
John Timney
Microsoft Regional Director
Microsoft MVP