One way would be to encrypt the connection string and save it to the registry. Then, when you need it, just read it from the registry and de-crypt.
>We have an application that needs to connect to an ODBC datasource using a DBC connection which is shared by DBC remote views. We don't want to store the ODBC password in the DBC as this would allow users with read only access to the DBC to see the password.
>
>We have been holding an encrypted version of the password in a file and the when the application connects to the database we modify the DBC connection to put in the password, make the connection and then modify the DBC connection again to blank out the password.
>
>This approach has 2 problems:-
>
>1. It creates deleted records in the dbc which lead to file bloat.
>2. Some users have discovered they can open the DBC as a text file and see the deleted records and therefore the password!
>
>Does anyone have a better means of making a remote connection but keeping the password secure?
>
>TIA