Re: ADO.NET security in Windows App?

From: Dominick Baier [DevelopMentor] (dbaier_at_pleasepleasenospamdevelop.com)
Date: 06/28/05 

Date: Tue, 28 Jun 2005 12:20:33 -0700

Hello Rob,

that's a SQL server configuration. Consult SQL Server Books Online (BOL).
You have to install a certificate for sql server in the cert store of the
service account.

If you can't find any useful information on how to do this - get back to me.

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

> So do I specify in my connection string "Integrated Security=SSL" ?
>
> As usual, my MSDN search provides a bunch of information not relevant
> to my search criteria -- MSDN is becoming more more useless -- I get
> better search hit using Google -- frustrating.
>
> "Dominick Baier [DevelopMentor]"
> <dbaier@pleasepleasenospamdevelop.com> wrote in message
> news:523796632555552049163721@news.microsoft.com...
>
>> Hello Rob,
>>
>> SQL communication is clear text. This includes the initial password
>> in the connection string as well as all data you send between
>> client/server.
>>
>> You have two options if you want to secure the data
>>
>> - IPSec tunnel between the two parties
>> - Enable SSL in SQL Server
>> ---------------------------------------
>> Dominick Baier - DevelopMentor
>> http://www.leastprivilege.com
>>> I've coded a VB.NET windows service that uses ADO.NET to communicate
>>> with both a MS Access database and an MS SQL Server 2000 database.
>>> I'm using SQL Authentication to validate access, but I'm not sure
>>> what
>>> options I have (if any) to secure the data transmission/communicate
>>> between my Windows Service and the SQL Server.
>>> I know with my web apps I can uses SSL, but what about standard .NET
>>> Windows apps -- do I have anyway to secure the data transmission
>>> to/from the SQL Server?
>>>
>>> Thanks,
>>>

Relevant Pages

  • Re: Login failed for user myComputerASPNET
    ... You really haven't provided any useful information so someone can ... IE: connection string. ... i am assuming your db connection string specifies that your ... Check that you have added the asp.net account to your sql server logins... ...
    (microsoft.public.dotnet.framework.aspnet)
  • RE: How to improve SQL Server operations
    ... The only useful information you've given us is "slow". ... is "slow" - some of which will have nothing to do with SQL Server. ... application, client hardware, network hardware, server hardware, server OS, ... that Alejandro posted includes lots of stuff on tuning your SQL Server config ...
    (microsoft.public.sqlserver.programming)
  • Re: Job succeeds manually but fails if scheduled
    ... jobs that set up from a maintenance plan does not seem to ... write very much useful information, so I'm not really expecting this to ... Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx ... Books Online for SQL Server 2005 at ...
    (comp.databases.ms-sqlserver)
  • Insert, Udate, Select data with embedded C++
    ... Does anyone know where I can find some useful information (preferably ... examples) of inserting, updating, and selecting data from a Sql Server ... CE database using embedded C++ 4.0? ...
    (microsoft.public.sqlserver.ce)
  • Re: SPN Requirement
    ... The service account for SQL Server needs to be a domain ... account to allow Write Public Information rights but I'd ... The SQL Network Interface library could not register the Service Principal ... Name for the SQL Server service. ...
    (microsoft.public.sqlserver.security)