| 2/4/2014 (11 years ago) | |
| Clarify | |
| Any | |
| 5/23/2014 (11 years ago) | |
| Windows (Any) | |
| Any |
It’s common to have database connection strings inside of an application’s config file.
For example, in Dovetail Mobile, the connection string is in web.config
For Rulemanager, the connection string is in FChoice.RuleManager.WindowsService.exe.config.
We can use the ASP.NET IIS Registration tool (Aspnet_regiis.exe) to encrypt sections of a config file.
Normally, this is only used on files that are named web.config.
But, we can work around this limitation by renaming a file to web.config, encrypting it, and renaming it back.
Example BAT file for encrypting and decrypting:
https://gist.github.com/gsherman/3ab016af442acd0d8d73
NOTE: this depends on find_replace.vbs, which is assumed to be in same directory as this file (crypt.bat)
find_replace.vbs is part of the above referenced gist
Usage: crypt.bat operation(encrypt or decrypt) file-to-be-crypted section-within-the-file-to-be-crypted
Examples:
To encrypt: crypt.bat encrypt Web.config appSettings
To decrypt: crypt.bat decrypt Web.config appSettings
Tested with Dovetail Mobile:
crypt.bat encrypt Web.config appSettings
Tested with Rulemanager:
crypt.bat encrypt FChoice.RuleManager.WindowsService.exe.config appSettings
crypt.bat encrypt FChoice.RuleManager.WindowsService.exe.config fchoice
Tested with Dovetail Carrier:
crypt.bat encrypt DovetailCarrierService.exe.config appSettings
crypt.bat encrypt DovetailCarrierService.exe.config CarrierEmailAccounts
Note: the encrypt operation must be performed on the same machine where the application is running.
This blog post has more details:
http://blogs.msdn.com/b/gaurav/archive/2013/12/16/encrypting-section-of-config-file-using-aspnet-regiis-exe-the-configuration-for-physical-path-web-config-cannot-be-opened.aspx
You must be logged in to post a comment.
Login