Web.config Security

Damian · Damian

Hi All ,

I have this problem. I know how to encrypr connections strings or XML files
using Aplication Block. I have implemented a Data Protection Provider to
encrypt all my configurations files. My problem is that my encryptation key
and other personal information is set in my web.config or app.config . I
wonder if Visual Studio has any tool or service to encrypt or secure the
web.config or there is another way to do this in order to make sure than
anyone is going to open or modify this file. Any advice?

Thanks for your help.

Alek Davis · Alek Davis

Damian,

Please see my response under microsoft.public.dotnet.security.

Alek

"Damian" <t-damianl@infocorp.com.uy> wrote in message
news:OwMK%23M$6DHA.2300@TK2MSFTNGP10.phx.gbl...

> Hi All ,
>
> I have this problem. I know how to encrypr connections strings or XML

files

> using Aplication Block. I have implemented a Data Protection Provider to
> encrypt all my configurations files. My problem is that my encryptation

key

> and other personal information is set in my web.config or app.config . I
> wonder if Visual Studio has any tool or service to encrypt or secure the
> web.config or there is another way to do this in order to make sure than
> anyone is going to open or modify this file. Any advice?
>
> Thanks for your help.
>
>

Madan Nayak · Madan Nayak

Hi..

You can pl. check up with the isoltaed storage.....

The security provided by frame workk...

Bye

"Alek Davis" <alek_xDOTx_davis_xATx_intel_xDOTx_com> wrote in message
news:OjS21iA7DHA.2088@TK2MSFTNGP10.phx.gbl...

> Damian,
>
> Please see my response under microsoft.public.dotnet.security.
>
> Alek
>
> "Damian" <t-damianl@infocorp.com.uy> wrote in message
> news:OwMK%23M$6DHA.2300@TK2MSFTNGP10.phx.gbl...

> > Hi All ,
> >
> > I have this problem. I know how to encrypr connections strings or XML

> files

> > using Aplication Block. I have implemented a Data Protection Provider to
> > encrypt all my configurations files. My problem is that my encryptation

> key

> > and other personal information is set in my web.config or app.config . I
> > wonder if Visual Studio has any tool or service to encrypt or secure the
> > web.config or there is another way to do this in order to make sure than
> > anyone is going to open or modify this file. Any advice?
> >
> > Thanks for your help.
> >
> >

>
>

Alek Davis · Alek Davis

No, by itself, isolated storage provides no security whatsoever. It is a
means for allowing programs to store application-specific data (in plain
text, by the way), but there are also easy means of accessing these data in
isolated storage as well (APIs, etc).

"Madan Nayak" <madan@ubicsindia.com> wrote in message
news:uygizjH7DHA.2524@TK2MSFTNGP11.phx.gbl...

> Hi..
>
> You can pl. check up with the isoltaed storage.....
>
> The security provided by frame workk...
>
> Bye
>
> "Alek Davis" <alek_xDOTx_davis_xATx_intel_xDOTx_com> wrote in message
> news:OjS21iA7DHA.2088@TK2MSFTNGP10.phx.gbl...

> > Damian,
> >
> > Please see my response under microsoft.public.dotnet.security.
> >
> > Alek
> >
> > "Damian" <t-damianl@infocorp.com.uy> wrote in message
> > news:OwMK%23M$6DHA.2300@TK2MSFTNGP10.phx.gbl...

> > > Hi All ,
> > >
> > > I have this problem. I know how to encrypr connections strings or XML

> > files

> > > using Aplication Block. I have implemented a Data Protection Provider

to

> > > encrypt all my configurations files. My problem is that my

encryptation

> > key

> > > and other personal information is set in my web.config or app.config .

I

> > > wonder if Visual Studio has any tool or service to encrypt or secure

the

> > > web.config or there is another way to do this in order to make sure

than

> > > anyone is going to open or modify this file. Any advice?
> > >
> > > Thanks for your help.
> > >
> > >

> >
> >

>
>

David Coe · David Coe

You can store your key in the registry or in a COM+ constructor.

Web.config Security

Thread Tools

Display