DataContext,连接字符串和安全性 [英] DataContext, Connection String and Security
问题描述
我正在将一个带有user / pw的连接字符串传递给我的DataContext,我想知道......是否传递了用户名/密码组合我每次创建DataContext时都以纯文本形式在网络周围?我在config
文件中加密了连接字符串,所以我并不担心有人以这种方式访问它,但我找不到有关与SQL Server的通信是否安全的任何信息。或者需要采取哪些步骤来确保它是?
谢谢!
Chris
您可以使用SSL加密客户端服务器流量:
https://technet.microsoft.com/en-us/library/ms189067(v=sql.105).aspx
Hi,
I'm passing a connection string with user/pw into my DataContext, and I'm wondering... is that username/password combination being passed around the network in plain text every time I create a DataContext? I have the connection string encrypted in a config file, so I'm not concerned about someone getting access to it that way, but I can't find any information on whether or not communication with SQL Server is secure... or what steps need to be taken to make sure that it is?
Thanks!
Chris
You can use SSL to encrypt client server traffic: https://technet.microsoft.com/en-us/library/ms189067(v=sql.105).aspx
这篇关于DataContext,连接字符串和安全性的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
