发表新帖
发表新帖

Asp.net ConnectionString in secure way

前端 未结
关注
7 639
离开以前
离开以前 2020-12-20 06:24

I could not get a satisfactory answer to my question on the google, they are:

  • How secure ConnectionString is over the HttpRequest?
  • Is using Connection
7条回答
  • 隐瞒了意图╮
    隐瞒了意图╮ (楼主)
    2020-12-20 07:22

    You can encrypt the conenction string inside the webconfig, here is an article from Microsoft about this topic : http://msdn.microsoft.com/en-us/library/dx0f3cf2(v=vs.80).aspx

    If you sending the connectionstring over a channel its not more secure than the channel. For example sending the connectionstring over HTTP and it will be just plain text, HTTPS and it will be encrypted, over FTP just plan text, and so on...

    If you have a webapplication in a shared hosted environment you should be worried about that the provider maybe get hacked.

    So just keep the connection string inside the web.config and encrypt it and don't send it around on internet ;-)

    0 讨论(0)
 看不清?
提交回复
热议问题