What is the most secure way to connect a ASP.NET 3.5 web application and SQL Server database? -


I have a web application developed in pure 3.5, and a SQL Server database.

The current authentication method is a connection string in web.config, it is a good idea to move the certification details from plain text.

So, I have two questions:

  1. Reliable connection - The password policy here is strict, which requires consistent change. Does this mean that I have to update the password for the password of the website to expire every time?

  2. Is there a second / better option?

As an alternative to reliable connections, you can access your web.config You can see how to encrypt

In short, if you call the command line

  aspnet_regiis -pe "connection settings" -app "/ sample" application -prov "RS-protected configuration provider" / Code>  

In the web site, the connection terms > can be encrypted using RSS.


Comments

Popular posts from this blog

MySql variables and php -

url rewriting - How to implement the returnurl like SO in PHP? -

kernel - How to create a "Block device" in Windows -