Most people aim for web.config, but I would at least encrypt the string if
you do that. There are free books on ASP.NET security at http://msdn.microsoft.com/architecture. Look at the "Patterns and Practices"
section.
--
Gregory A. Beamer
MVP; MCP: +I, SE, SD, DBA
**********************************************************************
Think Outside the Box!
**********************************************************************
Most people use the web.config, but it certain cases I've found it more
secure to just store it as a global variable within your app where it is
compiled.
My ASP.NET app opens and closes database connection in several pages.
Rather than hard coding string into every page, is there a place I can put
it where all pages will be able to access it. In days of fat client
programming, I put in INI file. Looking for similar solution.
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.