Re: best way for protect conn.strings?

From: Hernán Castelo (bajopalabra_at_hotmail.com)
Date: 11/11/04

• Next message: adrian zaharia: "ASP, Excel and SQL Replace function"
• Previous message: Bill: "Re: Passing Parameters to Server.Execute or #Include ?"
• In reply to: Mark Schupp: "Re: best way for protect conn.strings?"
• Next in thread: Bã§TãRÐ: "Re: best way for protect conn.strings?"
• Reply: Bã§TãRÐ: "Re: best way for protect conn.strings?"
• Messages sorted by: [ date ] [ thread ]

---

Date: Thu, 11 Nov 2004 18:27:56 -0300

i'm using the first,
any recommendation for these option ?

the activex and registry approaches
are more expensive, talking in resources... no?

-- 
atte,
Hernán Castelo
SGA - UTN - FRBA
"Mark Schupp" <nospan@nospam.com> escribió en el mensaje
news:u5w4JhAyEHA.392@TK2MSFTNGP12.phx.gbl...
> "best" way will depend on your individual requirements. Here are a couple
of
> ways in what I think is least to most secure.
>
> 1. keep connection string in an include file or set into application
> variable in global.asa
> 2. keep it in a text file that is not accessible through web, read it into
> an app var in global.asa.
> 3. keep it in system registry, read in as needed or put in app var in
> global.asa
> 4. embed it in an activex server-side component and call a method of that
> component to open connections.
>
> There are probably other variations as well.
>
> -- 
> Mark Schupp
> Head of Development
> Integrity eLearning
> www.ielearning.com
>
>
> "Hernán Castelo" <bajopalabra@hotmail.com> wrote in message
> news:%23znJbVAyEHA.1404@TK2MSFTNGP11.phx.gbl...
> > hi
> > what is the best way to protect
> > the connection strings
> > keeping an effective, low overheaded access
> > to them ?
> >
> > thanks
> > -- 
> > atte,
> > Hernán Castelo
> > SGA - UTN - FRBA
> >
> >
>
>

---

• Next message: adrian zaharia: "ASP, Excel and SQL Replace function"
• Previous message: Bill: "Re: Passing Parameters to Server.Execute or #Include ?"
• In reply to: Mark Schupp: "Re: best way for protect conn.strings?"
• Next in thread: Bã§TãRÐ: "Re: best way for protect conn.strings?"
• Reply: Bã§TãRÐ: "Re: best way for protect conn.strings?"
• Messages sorted by: [ date ] [ thread ]

---

Relevant Pages Re: createobjectEX ... > possible but you have to create a com server to run at server computer, ... > get the registry from it... ... > "Hernán Castelo" wrote in message ... >> atte, ... (microsoft.public.fox.programmer.exchange) Re: reading servers registry ... is coded to go to a Registry to get these values. ... how can i accomplish it? ... Hernán Castelo ... (microsoft.public.windows.server.networking) Re: can IIS disallow page reloads() by code ? ... > "Hernán Castelo" wrote in message ... >> Page reload has nothing to do with IIS configuration. ... (microsoft.public.inetserver.iis) Re: help:site hacked ... > Was OpenBSD kept up to date with all of the latest kernel patches, ... > Were the servers behind the BSD box? ... > "Hernán Castelo" wrote in message ... >> atte, ... (microsoft.public.windows.server.security) Re: refresh without "retry / cancel" message ... > "Hernán Castelo" wrote in message ... >> i'm doing a reload() in JS ... >> but in development site works fine ... >> atte, ... (microsoft.public.inetserver.asp.general)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Internet-Server  > microsoft.public.inetserver.asp.general  > 2004-11