Re: Web.config encryption in shared hosting scenario
- From: "Adriano Labate" <adriano.labate@xxxxxxxxxxxxx>
- Date: Wed, 13 Jun 2007 14:49:11 +0200
Hello Jazza,
I saw your post because I have a similar problem.
I just begin to search for a solution because the customer does not allow
access to the web server where my application has to be deployed. I would
like to encrypt the database connection string located in the web.config.
Did you found a solution to this problem? Thanks
Sincerly,
Adriano
"Jazza" <Jazza@xxxxxxxxxxxxxxxxxxxxxxxxx> a écrit dans le message de news:
5D099CD8-E572-41F5-A45B-3FDA3A3A1A3B@xxxxxxxxxxxxxxxx
Hi, I am an experienced .Net developer, but new to ASP.Net 2.0.
I have been using the Personal Web Site Starter Kit and have successfully
uploaded the site to a shared hosting provider. I am connecting to the SQL
database via SQL authentication rather than Windows authentication, as I
have
no control over the Windows user accounts. This means the SQL user name
and
password are in clear text in the connection string in web.config.
Therefore, best practice dictates that I encrypt the web.config file to
hide
the SQL login details. But the only way to encrypt a section of the config
file is to run aspnet_regiis.exe on the server, to which I have no access.
What are my options, if any, for protecting my config file? Does anyone
know
of any resources on how to create a custom encryption scheme?
Regards,
Jazza
.
- Follow-Ups:
- Re: Web.config encryption in shared hosting scenario
- From: Dominick Baier
- Re: Web.config encryption in shared hosting scenario
- Prev by Date: Re: accessing IWA secured website from Mac?
- Next by Date: Re: Web.config encryption in shared hosting scenario
- Previous by thread: Re: AzMan scope level application groups seem to be br ...
- Next by thread: Re: Web.config encryption in shared hosting scenario
- Index(es):
Relevant Pages
|
|
