Re: SQL 2000 Encryption

From: "Anthony Thomas" <ALThomas@xxxxxxxxx>
Date: Mon, 19 Feb 2007 19:15:36 -0600

It is 40-bit or 128-bit depending on whether or not both web and database
server have the High Encryption options installed and using SSL. Without
SSL, there is some obfuscation, but absolutely no encryption.

http://msdn2.microsoft.com/en-us/library/ms189067.aspx

As far as caveats, check these out:

http://www.microsoft.com/downloads/details.aspx?FamilyID=055ff772-97fe-41b8-a58c-bf9c6593f25e&DisplayLang=en

Anthony Thomas

--

<myndkrime@xxxxxxxxx> wrote in message
news:1171652571.563515.146690@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Can someone inform me to what level the encryption level is on SQL
Server 2000 network traffic? I have been unable to find a firm number,
under the impression that it is only 40-bit. Is this wrong?

Also, if you use SSL encryption between SQL 2000 and IIS 6.0, what are
some of the caveats that you might expect?

Thanks in Advance.....

References:
- SQL 2000 Encryption
  - From: myndkrime

Prev by Date: Re: SQL 2005 Encryption Algorithms
Next by Date: Re: Securing SQL Server
Previous by thread: SQL 2000 Encryption
Next by thread: change ownership of objects
Index(es):
- Date
- Thread

Relevant Pages

Re: encrypt password for webservices
... When you say about limitation of IIS/SLL (I assume it should be SSL) ... > 3) Requests can be multi-threaded, and some requests can even be droped if ... which allows the server to find appropriate EncryptionKey ... > encryption. ...
(microsoft.public.dotnet.security)
Re: Can encryrpted packets be cracked by middle man?
... But when you add that "someone who has complete control ... ssl connection to the proxy server which then communicates with the web ... server which could be either http or https as is that possibility with ISA. ... > This is a question about how secure encryption is. ...
(microsoft.public.security)
Re: criticism of web based password manager requested
... going to work (different encryption key (obvious because you can't ... The js being untrustworthy on a server you don't maintain is agan the ... With the correct js in place i don't have to trust ANYTHING ... Yes I can throw ssl on it and use ...
(sci.crypt)
Re: SSL Encryption Test
... Client side initiated SSL encryption and server-side SSL encryption. ... Server side SSL encryption is enabled via the "Force Protocol Encryption" ...
(microsoft.public.sqlserver.security)
Re: How to secure FTP?
... >> So I am also hearing in this thread that secure FTP isn't really ... It's meant more for encryption than anything else? ... > and password are required by the server in order to log on, ... > other mechanisms (such as SSL) that are supported by a number of third ...
(microsoft.public.inetserver.iis.ftp)