MS SQL Server
  Home arrow MS SQL Server arrow Page 5 - A Secure Way of Building Connection String...
ASP Free Forums 
.NET  
ASP  
ASP Code  
ASP.NET  
ASP.NET Code  
BrainDump  
C#  
Code Examples  
Database  
Database Code  
IIS  
Microsoft Access  
MS SQL Server  
Visual Basic.NET  
Windows Scripting  
Windows Security  
XML  
ASP Web Hosting  
ASP.NET Web Hosting 
Mobile Linux 
App Generation ROI 
Windows Web Hosting
 
IBM® developerWorks 
Sun Developer Network 
Weekly Newsletter
 
Developer Updates  
Free Website Content 
 RSS  Articles
 RSS  Forums
 RSS  All Feeds
Write For Us Get Paid 
Request Media Kit
Contact Us 
Site Map 
Privacy Policy 
Support 
 USERNAME
 
 PASSWORD
 
 
  >>> SIGN UP!  
  Lost Password? 
MS SQL SERVER

A Secure Way of Building Connection Strings
By: Jayaram Krishnaswamy
  • Search For More Articles!
  • Disclaimer
  • Author Terms
    		•
    Rating: 4 stars4 stars4 stars4 stars4 stars / 6
    2006-11-14

    Table of Contents:
  • A Secure Way of Building Connection Strings
  • Reviewing member properties of the class
  • Reviewing properties using an example
  • Building a ConnectionString using the class
  • Entering valid connection information
    		•

    Rate this Article: Poor Best 
      ADD THIS ARTICLE TO:
      Del.ici.ous Digg
      Blink Simpy
      Google Spurl
      Y! MyWeb Furl
    Email Me Similar Content When Posted
    Add Developer Shed Article Feed To Your Site
    Email Article To Friend
    Print Version Of Article
    PDF Version Of Article
    		 
     
    ADVERTISEMENT

    A Secure Way of Building Connection Strings - Entering valid connection information
    (Page 5 of 5 )

    The TechnicalWriter is typing in the correct values for the various items on the ConnectionString builder form as shown. When he clicks the button he will see the following display. You can see that the clear text password is easy to read.

    User types in wrong UserID

    In this case, while he types in all other information correctly, he types the UserID incompletely as shown. Of course there is no user called Technical in the server.

    User types in the server name incorrectly

    In this case he incorrectly types in the server name which has the syntax Domain/Server. All other information is correct. He sees the following display. Notice the spelling error in the SQL Server. The error message is the most frequent one that you see, which does not really show the exact error that might have occurred, although in this case it points to failure due to locating the server. The complete message is shown here:

    An error has occurred while establishing a connection to the server. When connecting to SQL Server 2005, this failure may be caused by the fact that under the default settings SQL Server does not allow remote connections. (provider: SQL Network Interfaces, error: 26 - Error Locating Server/Instance Specified)


    Summary

    This SqlConnectionStringBuilder class will generate a connection string whose syntax and key/value pairs are checked against the database and invalid Key/Values or nested Key/Values will throw an exception. The SqlConnectionStringBuilder class simplifies the management and security of connection strings for connecting to MS SQL Servers. SqlConnectionStringBuilder can also be used for picking up the information from the configuration file. Similar classes exist for other default data providers such as Oracle. The builder can also be used to parse and modify the connection string to suit the needs of the application.


    DISCLAIMER: The content provided in this article is not warranted or guaranteed by Developer Shed, Inc. The content provided is intended for entertainment and/or educational purposes in order to introduce to the reader key ideas, concepts, and/or product reviews. As such it is incumbent upon the reader to employ real-world tactics for security and implementation of best practices. We are not liable for any negative consequences that may result from implementing any information covered in our articles or tutorials. If this is a hardware review, it is not recommended to open and/or modify your hardware.


       · Security is one of the most important concerns and the hassle free SQL Connection...
     
    >>> Post your comment now!

    MS SQL SERVER ARTICLES

    - Completing the Introduction to Transact-SQL
    - A Brief Introduction to Transact-SQL
    - Lookups and Blocking Bad Data
    - Field Validation Rules for Blocking Bad Data
    - Using Masks to Block Bad Data
    - Blocking Bad Data
    - Using @@ROWCOUNT and TABLE Variables for Dat...
    - How to Use Variables, IF and CASE in Databas...
    - Creating Important Aspects of Notification S...
    - Working wth Variables in Database Interactio...
    - Delving Deeper into Notification Services
    - Notification Services
    - Building a Multi-table Report with SQL 2005 ...
    - A Secure Way of Building Connection Strings
    - Transferring a Database Using the SSIS Desig...
    Find More MS SQL Server Articles
     
    Application Delivery: Everything You Wanted to Know, but Didn`t Know You Needed to Ask
    A comprehensive guide to examining the topics of Wide-area Data Services and app....
     
    Best Practices: Safe and Secure Hardware Asset Recovery
    Companies increasingly must meet EPA and local requirements for the disposal of ....
     
    Managing SSL Security in Multi-Server Environments
    Read this white paper to learn how to simplify management of your organization's....
     
    Open Source Security Myths
    Open Source Software (OSS) is computer software whose source code is available t....
     
    Power and Cooling Capacity Management for Data Centers
    This paper describes the principles for achieving power and cooling capacity man....
     




    © 2003-2008 by Developer Shed. All rights reserved. DS Cluster 5 hosted by Hostway
    Stay green...Green IT