Question
I have following connection string in my web application.
https://stackoverflow.com/questions/19044964
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
Russian<add name="ApplicationDs" connectionString="Data Source=(localhost);Initial Catalog=DBName;User ID=XXX;Password=xxxxxxx;" providerName="System.Data.SqlClient"/>
For some security purpose , unable to put sql username and password directly in web.config file. If anything build in security option is available in asp .net to handle this.
Advice me
Solution
Use integrated security and run your web application with a user account you gave permissions to within your database.
Data Source=myServerAddress;Initial Catalog=myDataBase;Integrated Security=SSPI;
for more connection string examples, find them here http://www.connectionstrings.com/sql-server-2012
OTHER TIPS
You might consider encrypting your connection string section. If the security issue is that the username and password cannot be exposed in clear text, then encryption might help/solve the issue.
For more information on web.config encryption, see this link.
