I am devoloping an windows application in dot net.It's config file includes sensitive data such as sql pass..So When deploying application i want to give it as encrypted. I googled arund and found one that Rsiprovider to encrypt the fields. But encryption is machine specific and needs deploying config file in clear mode and after first run of program ,encryption is succeed on the runnig machine. Is there a way to deploy config files as encrypted ?
+4
A:
Think about it - if you encrypt before shipping you will also have to provide a key somewhere. And then the problem shifts to how to hide that key...
The post-setup encryption is meant to hide the config from prying eyes.
Henk Holterman
2009-03-13 09:13:50
+1, no problem dealing with that other key you just encrypt it, and so on, turtles all the way down :p
Sam Saffron
2009-03-13 11:03:05