Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
ckuo@kahluadesigns.com
Yak Posting Veteran
58 Posts |
 Posted - 2004-01-16 : 11:42:18
|
| Hi,When a user connects to my sql server thru TCP/IP with a user and password, how can I secure the data that is being passed in the connection? |
|
|
Merkin
Funky Drop Bear Fearing SQL Dude!
4970 Posts |
Posted - 2004-01-16 : 11:53:04
|
| Use a VPNDamian |
 |
|
|
ckuo@kahluadesigns.com
Yak Posting Veteran
58 Posts |
Posted - 2004-01-16 : 12:14:54
|
| Well, say I have a distributed application that makes calls to the sql server, how would i incorporate the vpn in this case? Or even if the sql server is on a webserver and users need to log int thru Enterprise Manager, how do I ensure it sall secure without setting up a VPN in every case. thanks |
|
|
|
setbasedisthetruepath
Used SQL Salesman
992 Posts |
Posted - 2004-01-16 : 12:29:37
|
| SQL Server does not concern itself with data security beyond the application layer. That is a job for the network infrastructure. Internal network connections typically don't need security as your network personnel already segregates internal from external traffic. VPN is the best approach for external clients accessing internal sql servers (though in today's n-tier designs that's atypical, more common is external clients accessing internal web servers through ssl).Define "secure". Do you mean only certain users can gain access, or that the data over the wire is encrypted, or both?JonathanGaming will never be the same |
|
|
|
ckuo@kahluadesigns.com
Yak Posting Veteran
58 Posts |
Posted - 2004-01-16 : 12:54:01
|
| Secure meaning the data being transferred between the sql server and the client is encrypted. Thanks |
|
|
|
jasper_smith
SQL Server MVP & SQLTeam MVY
846 Posts |
Posted - 2004-01-16 : 14:35:25
|
| If you want all data encrypted then you can use SSL assuming you are on SQL2000. If all you want to encrypt is the initial login handshake then simply installing a certificate will do this without requiring you to enable encryption on the server side.HOW TO: Enable SSL Encryption for SQL Server 2000 with Certificate Server[url]http://support.microsoft.com/?id=276553[/url]HOW TO: Enable SSL Encryption for SQL Server 2000 with Microsoft Management Console[url]http://support.microsoft.com/?id=316898[/url] |
|
|
|
|
|
|
Secure Connections