Re: Best practices for storing/retrieving login credentials
From: Michael Giagnocavo [MVP] (mggUNSPAM_at_Atrevido.net)
Date: 06/26/03
- Next message: Chris_uk: "Identifying a user's group membership"
- Previous message: Ivan Medvedev [MS]: "Re: how to programatically give assembly loaded from network the same trust as those loaded from local host?"
- In reply to: Roy Gunnarsson: "Best practices for storing/retrieving login credentials"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 26 Jun 2003 09:05:24 -0600
You could look into the Data Protection API (DPAPI) or perhaps an LSA
Secret.
-mike
MVP
"Roy Gunnarsson" <rgunnarsson__REMOVE__@excelsior.edu> wrote in
message news:uwafQA$ODHA.1556@TK2MSFTNGP10.phx.gbl...
> Hello all,
>
> I am planning for an application that will be used to delegate a
series of
> tasks to clerical staff in my organization. One step involves
connecting to
> an FTP site for which our organization has a single account. I don't
wish to
> endow everybody with the login credentials and was wondering what
the best
> way to store and retrive the encrypted credentials is. I know I
could have
> people use an FTP client with the login already set up, but I want
to make
> the process as fool-proof as possible (not to imply that my
co-workers are
> fools...) and prefer to simply code and automate that part as well.
I
> already have the FTP functionality coded but obviously don't want to
> hardcode the login in plain text. I'm just wondering what's being
done in
> such circumstances.
>
> Thanks,
>
> Roy Gunnarsson
>
>
- Next message: Chris_uk: "Identifying a user's group membership"
- Previous message: Ivan Medvedev [MS]: "Re: how to programatically give assembly loaded from network the same trust as those loaded from local host?"
- In reply to: Roy Gunnarsson: "Best practices for storing/retrieving login credentials"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
