What is the most secure way to connect a ASP.NET 3.5 web application and SQL Server database? -
I have a web application developed in pure 3.5, and a SQL Server database.
The current authentication method is a connection string in web.config, it is a good idea to move the certification details from plain text.
So, I have two questions:
-
Reliable connection - The password policy here is strict, which requires consistent change. Does this mean that I have to update the password for the password of the website to expire every time?
-
Is there a second / better option?
As an alternative to reliable connections, you can access your web.config You can see how to encrypt
In short, if you call the command line
aspnet_regiis -pe "connection settings" -app "/ sample" application -prov "RS-protected configuration provider" / Code> In the web site, the connection terms
>> can be encrypted using RSS.
Comments
Post a Comment