Database Logging - Registry Plain text Password

Support, Questions and Discussions on WinSyslog

Moderator: alorbach

Google Ads


Database Logging - Registry Plain text Password

Postby azstester » Thu Apr 30, 2009 3:23 pm

Hello

we use WinSysLog 9.0.x in Production installation. With need the
RuleSet: Database Logging to MSSQL Server Database.
All Syslog Events are saved fine in the Database.

For checking all Settings i see in the Registry the Values of the Database Account are Plain Text:

RS2 = 2nd RuleSet
HKEY_LOCAL_MACHINE\SOFTWARE\Adiscon\WinSyslog\RuleSets\RS2\R1\A1
szODBCUid = username
szODBCPwd = mypassword
szODBCDsn = dsnname

Is there a setting to encrypt this values for the registry ?

Thanks for any Feedback

Patrick
azstester
New
 
Posts: 1
Joined: Thu Apr 30, 2009 2:51 pm

Re: Database Logging - Registry Plain text Password

Postby alorbach » Thu Apr 30, 2009 4:27 pm

Hi,

the field "szODBCPwd" can be encryped by enabling the option "Enable Encryption" below the password field in the Database Options.

best regards,
Andre Lorbach
alorbach
Site Admin
 
Posts: 1627
Joined: Thu Feb 13, 2003 11:55 am

Re: Database Logging - Registry Plain text Password

Postby rgerhards » Thu Apr 30, 2009 5:39 pm

I think it is stated in the manual, but I'd like to caution that this is not strong encryption (obfuscation would probably be a better word). One reason is that we must be able to obtain the original value. So it is wise to use a special user and grant only limited access privileges to it.

Rainer
rgerhards
Site Admin
 
Posts: 3807
Joined: Thu Feb 13, 2003 11:57 am

Google Ads



Return to WinSyslog

Who is online

Users browsing this forum: No registered users and 0 guests

cron