保护 ASP.Net 用户数据库的安全
我正在开发将托管在客户端服务器上的网络应用程序。
有各种限制/安全措施,我担心这些可能会被“黑客攻击”,因为客户端将通过 SSMS 直接访问 ASP.Net 用户数据库。
我可以想出几种方法来阻止用户这样做,但我有兴趣了解是否有我应该遵循的特定标准?
I'm working on the web app which will be hosted on the client's server.
There are various restrictions/security measures in place and I'm concerned that these can be "hacked" because the client will have a direct access to the ASP.Net user database through the SSMS.
I can think of few ways to stop the user from doing this, but I'm interested to find out whether there are any specific standards that I should follow?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
如果客户端具有对数据库的直接管理访问权限,则您无能为力。如果这些是客户端的登录详细信息 - 为什么这是一个问题?
If the client has direct administrative access to the database, there's not much you can do. If these are the client's login details - why is this then a problem?