Database Password

  • Thread starter Thread starter A.M
  • Start date Start date
A

A.M

Hi,

We have a web server running ASP.NET app in DMZ zone provided by Cisco PIX
firewall.
The web application is sending user id and password to the database server.
What is the best practice to make the connection string secure?

Thanks,
Ali
 
Do not store the actual password. Store a hash instead. Unless you're
talking about the connection password, in that case you should use Windows
authentication so the password would not be sent (and encrypt the
connection).

Jerry
 
You must log in or register to reply here.

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Custome Service Account - Problem connecting to SQL Server (Timeou 4
Webserver in DMZ? 3
Open Connection error 1
Secure connection to database 3
Different connection strings for different web servers 11
Connecting external web application with internal database 3
website and database on same server 2
How to debug using a private address? 8

Back
Top