Secure UDL files with restricted ACLs

From Guidance Share

- J.D. Meier, Alex Mackman, Michael Dunner, Srinath Vasireddy, Ray Escamilla and Anandha Murukan

If your application uses external universal data link (UDL) files with the ADO.NET managed data provider for OLE DB, use NTFS permissions to restrict access. Use the following restricted ACL:

Administrators: Full Control
Process Account: Read

Note UDL files are not encrypted. A more secure approach is to encrypt the connection string using DPAPI and store it in a restricted registry key.

[edit]

References

See Building Secure Data Access at http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/html/THCMCh14.asp

Retrieved from "http://www.guidanceshare.com/wiki/Secure_UDL_files_with_restricted_ACLs"

Views

Article
Discussion
Edit
History

Personal tools

Search

Toolbox

What links here
Related changes
Upload file
Special pages
Printable version
Permanent link