.net - Recognize application connected to SQL Server 2005 -

-

I should know which application is connected to DB and execution of SP.
(I want to limit the execution of SP only my app - all others - for example MS SSMS will be ignored)

So, is there a way to detect associated client names?

If you do not have other suggestions to make sure that only dedicated app is used (the app is using Windows' integrated security)

Edit: Which problem I'm trying to solve:

I'm working on the app made in the user's right & amp; Roles module Therefore, the app receives all areas from DB (SP) and it is decided by commercial logic to show which user (or not)

I am afraid of a more experienced user: He can run his own app, connect to DB and leave all security restrictions.
This is the reason why I want to ensure only DB conversations with this app.

P> Connection string is the ultimate solution but it is easy to sniff - I wonder if there will be another option

The only thing that can be authenticated on Windows is the user is not a secure method to establish an identity for application As a result, any effort to restrict access to a specific application is sufficiently inspired by the attacker. May be defeated by.

You can keep an accidental login honestly by adding in the trigger you can see the "Name of the app" declared by the connection string and can not close the connection. This could prevent someone accidentally connecting to your server. However, it can not prevent an inspired administrator from accessing the data, because the name of the app can be tricked. In addition, if you have administrative and maintenance tasks of any type, administrators and maintenance tasks will require access to your database.

A little better way to control access through data. One approach enables you to apply for this app, you still have to compute your content management restrictions ('column' restrictions and others you quote). Will use your custom application logic for. This will progress a bit so that only you can modify and access your application data. This will stop the non-administrator from accessing your data, but will be a privileged administrator ( always ), he can do whatever he wants.

And finally the higher bar than the deployment of an encryption. To get this done, a fixed administrator actually takes it and it takes an administrator who needs to take specific steps to find your key password, they can not accidentally search as I said, a dedicated administrator will always Will be able to access the data.

No alternative is to deploy any obstacle, rather it is to use auditing to monitor the data. Clear auditing can be done in the compromised SQL Server and audit can usually do a strong enough deterrent advertisement.


Comments

Post a Comment

Popular posts from this blog

c# - ListView onScroll event -

-
I am programming a simple C # application, and I need a Scallow event on the list view. So I inherited the original ListView class created in ListviewEx witch. I found out how to locate the scroll message from WinAPI and I modified the WndProc method. Now I have this WndProc: protected override zero WndProc (Ref message message) {base.WndProc (Ref I); If (m.msg == WM_VSCROLL) {onScroll (This, New EventArgs ()); }} But the problem is, I do not know how to know about scrolling information. This data should be in wParam, but there is a LOWORD macro ++ like in C in C # and I switch to find the criteria like SB_ below, SB_ENDSCROLL, SB_PAGEUP etc. there any way Need to change the LOWORD macro from C #? Or any other way to find the necessary parameters about scrolling? You can define the WParam constants as the following: Private const int WM_HSCROLL = 0x114; Private Constant WM_VSCROLL = 0x115; Private contact int SBHOZZ = 0; Private Consultant SB_VERT = 1; Private Con...
Read more

PHP - get image from byte array -

-
I am trying to create a back-end for my mobile application. I am sending the content of an image in the body of the HTTP request (output stream) as a byte array, I want to read this stream of bytes in PHP scripts and take back an image. Can anyone tell me how can I do this? Thank you. You can obtain the request body $ body = Reading from file_get_contents ('php: // input'); What you do with that data Depending on you, you can write the data in a file as you mentioned that this is image data, you can drop the data into the object can do. Another option is to use and load the image.
Read more

Linux Terminal Problem with Non-Canonical Terminal I/O app -

-
I have a small app written in C to run on Linux. Part of the app accepts user-input from keyboard , And it uses non-canonical terminal mode so that it can respond to each keystroke. The section of the code that accepts input is a simple task that is called repeatedly in the loop: char get_input () {char C = 0; Int res = reading (input_tamille, & amp; c, 1); If (RSS == 0) 0 returns; If (res == -1) {/ * snip error handling * /} return c; } It reads a letter from the terminal if there is no input within a given time limit, (c_cc [VTIME] value in the vocabulary structure), read () 0 And get_input () is called again It all works very well, I have recently discovered that if you run this app in a terminal window, and then the app Close the terminal window without ending, the app will not exit Received, but CPU intensive launches into an infinite loop, where the read () returns 0 without waiting continued. So how can I get out of the apple if it runs from the terminal win...
Read more