web.config - Passwords Clear Text

From: Sanka (loonysan_at_mailcity.com)
Date: 05/26/03

  • Next message: Matjaz Ladava: "Re: web.config - Passwords Clear Text" 
    Date: Mon, 26 May 2003 10:58:22 -0700

    Hi all,

    Is there a way to encrypt the passwords which are
    appearing in the Config file.

    In the web.config file, for the identity tag we are
    setting impersonate=true and giving a UserName and
    Password. Currently the password is in clear text. Is
    there a way to encrypt the password and give it in
    web.config file.

    Thanks for your thoughts.

    Cheers,
    Sanka

  • Next message: Matjaz Ladava: "Re: web.config - Passwords Clear Text"

    Relevant Pages

    • Re: Web.config or App.config Security
      ... I would be surprised if you could use Data Protection Provider from a Web ... If I understand it correctly, it uses DPAPI, but DPAPI (with ... .config file. ... > encrypt all my configurations files. ...
      (microsoft.public.dotnet.security)
    • encrypting connection strings for network installed application
      ... applications on the workstations and the appropriate permissions on the ... application's .config file, the connectionStrings section of the file ... Here is the code used to encrypt the connectionStrings section of the ...
      (microsoft.public.dotnet.languages.csharp)
    • Re: Encrypting/Decrypting Password from a Config File
      ... > I am looking for a way to encrypt a password in a configuration file ... > out in the open if someone were to look at the config file. ... > application would read encrypted password, decrypt the password back ... > // Create Encryption cipher ...
      (comp.lang.java.programmer)
    • Encrypting/Decrypting Password from a Config File
      ... I am looking for a way to encrypt a password in a configuration file ... out in the open if someone were to look at the config file. ... decrypt the password back ... String decryptedString = new String; ...
      (comp.lang.java.programmer)
    • Re: Help Encrypting Connection String
      ... but I have to do it on SQL Server instead of SQL ... If I'm retrieving the connection string in my own code, ... > in 2.0 you can encrypt nearly all config section out of the box using the ... >> the config file, but .NET 2.0 has more options. ...
      (microsoft.public.dotnet.framework.aspnet.security)