Mary Chipman [MSFT] wrote:
> You're absolutely right -- in a Windows app encrypting config sections
> is good only for obfuscation.
>
> --Mary
>
> On Sun, 2 Jul 2006 07:34:32 +0000 (UTC), Dominick Baier
> [DevelopMentor] <dbaier@pleasepleasenospamdevelop.com> wrote:
>
>> well - encrypting stuff on the client doesn't really buy you any security.
>>
>> if the app is able to decrypt it (running in the user's context) - then the
>> user is able too...
>>
>> just keep that in mind...
>>
>> ---------------------------------------
>> Dominick Baier - DevelopMentor
>> http://www.leastprivilege.com
>>
>>> Here's another resource that discusses the issue in the context of
>>> both Web and Windows forms:
>>> http://msdn2.microsoft.com/en-us/library/89211k9b.aspx.
>>>
>>> --Mary
>>>
>>> On Fri, 30 Jun 2006 17:13:10 +0100, paulo <isf@nospam.nospam> wrote:
>>>
>>>> Hello,
>>>>
>>>> I just found the following article on how to encrypt connection
>>>> strings in .config files with .NET 2.0:
>>>>
>>>> http://msdn2.microsoft.com/en-us/library/dtkwfdky.aspx
>>>>
>>>> However it focus on ASP.NET applications, and I also want to do it in
>>>> Windows Forms applications. Is this possible? Could someone point me
>>>> to a way to do it using the new .NET 2.0 Protected Configuration
>>>> classes? Thanks in advance for any help given.
>>>>
>>>> Regards,