User and password are included inside the code.

Question

User and password are included inside the code.

I wrote a WinForm application using C #. The application must be connected to the database, so it contains a code, for example:

String connstring = String.Format("Server={0};Port={1};" + "User Id={2};Password={3};Database={4};", "localhost", "3456", "username", "password", "databasename" );

This means that the user and password of the database server are included inside the application. I think this is not a safe way. Is there a way to improve security?

+4

security c # database winforms

Ahmed Nov 20 '12 at 16:18

source share

3 answers

You can save them in a local file, and then use system permissions to make it difficult to change it.

0

Mikey Nov 20 '12 at 16:20

source share

Ignore this problem.
Allows user to enter database username / password
Do not connect to the database, but connect to the Http service, so you do not miss the password to connect to the database in any way.

0

deerchao Nov 20 '12 at 16:21

source share

Chrisbint · Accepted Answer · 2012-11-20T16:20:10+0000

You can add an encrypted connection string to your app.config.

For more information: Protecting Connection Strings

User and password are included inside the code.

More articles: