Re: Using application rolls in SQL Server
From: Jan Weingärtner (jweingart_at_gmx.de)
Date: 06/19/04
- Next message: KarlShifflett: "IDataParameter No Parameter Length?"
- Previous message: Jan Weingärtner: "Re: Using application rolls in SQL Server"
- In reply to: John Cross [MSFT]: "Re: Using application rolls in SQL Server"
- Next in thread: Angel Saenz-Badillos[MS]: "Re: Using application rolls in SQL Server"
- Messages sorted by: [ date ] [ thread ]
Date: Sat, 19 Jun 2004 11:19:02 +0200
> You could let your application authenticate and authorize its users and then use a SQL connection
> string with a fixed *SQL* user that has required access (but is unknown to application users).
This is my solution in any case. The problem is, that the transmitted password is _not_
really encrypted if i use standard security (it's easy to crack login and password) and
i dont want to use trusted/integrated security. So my hope is to increase security by using
application rolls.
best regards,
Jan
- Next message: KarlShifflett: "IDataParameter No Parameter Length?"
- Previous message: Jan Weingärtner: "Re: Using application rolls in SQL Server"
- In reply to: John Cross [MSFT]: "Re: Using application rolls in SQL Server"
- Next in thread: Angel Saenz-Badillos[MS]: "Re: Using application rolls in SQL Server"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
