Level Extreme platform
Subscription
Corporate profile
Products & Services
Support
Legal
Français
SQL Login Info...
Message
From
12/11/2002 10:49:27
Bob Archer
Tampa, Florida, United States
 
 
To
All
General information
Forum:
ASP.NET
Category:
Other
Title:
SQL Login Info...
Miscellaneous
Thread ID:
00721627
Message ID:
00721627
Views:
36
Hi All,

Using ASP.Net we are storing the SQL Server name and database name in the appSettings section of the web.config file. How do you folks go about making sure this info is secure.

Should I tell my users the need to give the aspnet user access to the database and use NT Authentication exclusivly. Or, should I have them put a username and password in the config file? If they do this, how secure is it.

What about impersonation? It seems, if I need a username/password of a windows user, this is just the same as storing the sql username/password.

Thanks,
BOb
Next
Reply
Map
View

Click here to load this message in the networking platform