c# - When encrypting web.config connection string, where is the key stored? -


when encrypting connection string in web.config, key stored?

also, need re-compile when change connection string credentials?

according this documentation have 2 providers when encrypting configuration:

  • rsaprotectedconfigurationprovider
  • dpapiprotectedconfigurationprovider

i have little knowledge dpapi can not or against it. when considered use encryption of web.config chose rsa , defined other csp hold rsa encryption key. can set in machine.config in configprotecteddata element.

the mentioned page describes , guides how encrypt web.config sections using rsaprotectedconfigurationprovider. when using provider, have 2 options

  • machine-level container (rsa key stored in \documents , settings\all users\application data\microsoft\crypto\rsa\machinekeys)
  • user-level key container (rsa key stored in \documents , settings{username}\application data\microsoft\crypto\rsa)

the guide describes how use aspnet_regiis.exe tool rsaprotectedconfigurationprovider encrypt sections of configuration file.

to answer second question. not need re-compile application have decrypt section (connection string), change credentials , encrypt section again. or replace web.config new 1 , encrypt again.

pleas note when encrypting section have have encryption key on same machine web.config. guide mentions how export rsa key 1 machine , import usage in web farms.

but think moment: when application can decrypt web.config (because has before using connection string) can (if can machine). know permissions use key can set etc. etc. imho wrong practice use passwords in connection string.

one last thing. aspnet_regiis.exe tool mentioned in guide above can encrypt web.config. if have app.config , want encrypt it, @ this question.


Comments

Post a Comment

Popular posts from this blog

apache - Remove .php and add trailing slash in url using htaccess not loading css -

i have add following code htaccess file removing .php extension , add trailing slash urls. worked fine reduced page loading speed , css code not loading @ all. pages ugly. please help rewriteengine on rewritebase / ## hide .php extension snippet # externally redirect /dir/foo.php /dir/foo rewritecond %{the_request} ^[a-z]{3,}\s([^.]+)\.php [nc] rewriterule ^ %1/ [r,l] # add trailing slash rewritecond %{request_filename} !-f rewritecond %{request_uri} !/$ rewriterule . %{request_uri}/ [l,r=301] # internally forward /dir/foo /dir/foo.php rewritecond %{request_filename} !-d rewritecond %{request_filename}.php -f rewriterule ^(.*?)/?$ $1.php [l] we can rewrite urls using .htaccess files. before writing in .htaccess files need verify kind of server using. can check server adding a <?php phpinfo(); ?> in php page. ensure mod_rewrite module enabled in apache server. can identified checking phpinfo included page. common methods used url rewriting follows ...
Read more

inno setup - TLabel or TNewStaticText - change .Font.Style on Focus like Cursor changes with .Cursor -

is possible change .font.style on focus tlabel or tnewstatictext happens cursor when use .cursor ? there no built-in support track mouse hovering in inno setup @ time. however, intercepting window procedure of controls can track yourself. following example need innocallback library: [setup] appname=my program appversion=1.5 defaultdirname={pf}\my program outputdir=userdocs:inno setup examples output [files] source: "innocallback.dll"; destdir: "{tmp}"; flags: dontcopy [code] #ifdef unicode #define aw "w" #else #define aw "a" #endif const gwl_wndproc = -4; wm_mousemove = $0200; type wparam = uint_ptr; lparam = longint; lresult = longint; twindowproc = function(hwnd: hwnd; umsg: uint; wparam: wparam; lparam: lparam): lresult; function setcapture(hwnd: hwnd): hwnd; external 'setcapture@user32.dll stdcall'; function releasecapture: bool; external 'releasecapture@user32.dll stdcall'; func...
Read more