Topics

C#•3mo ago

Password Control

Hi, I have a simple WinForms app that uploads something to an SFTP server. I am trying to control the login to this SFTP properly but not sure how to both secure the password and still pass it in the connection string. I know about using DPAPI but that would not translate between machines when installing the app. Is there a way to safely store a password for decryption to use in this way? My best guess so far is to enter the password after install and use DPAPI to hash it. It's an extra install step I'd like to avoid if there's a better way.

2 Replies

Jimmacle•3mo ago

you could make the user put in a password/decryption key to decrypt the encrypted password shipped with the app no automatic way afaik, because if your program can do it with no intervention anyone who pokes at the code will be able to do it too

De1337•3mo ago

yeah that's kind of what I was feeling like. Anything I do that's reversible is....reversible. I might just add a step of entering the PW at install time and store the blob for use Is it safe to store the blob in like properties.settings area? Then pull from there to decrypt? Future explorers who stumble upon this, I just saved to a file to be decrypted later

We are a programming server aimed at coders discussing everything related to C# (CSharp) and .NET.

52KMembers

View on Discord

Want results from more Discord servers?

Add your server

More Posts

CQRS command with complex structureIs it okay to have command like this, is it bad approach for CQRS to have DTO inside Command? ``` p ✅ I dont understand this error in my codeerror CS7036: There is no argument given that corresponds to the required formal parameter 'year' of ✅ Deploying WPF APPHi, i'm a bit lost with all the informations i've found like .net Framework, .net Runtime, Publish C ✅ Beginner loopI need to make it so if the user doesnt enter an integer it gives an error. ive done this but if the ML Profile MatcherHi team! I am trying to build a profile matcher, where I have two tables, ```Summary``` and ```goals Error: Add all the req. services by calling 'AddAuthorization'. But AddAuthorizationCore was calledCurrently building Blazor webapp on .NET 8. And making an attempt at adding Keycloak SSO. However, w ✅ launch.json not workingidk its just not working Why can't Visual Studio find this file?``` StorageFile renderingConstantsStorage = await StorageFile.GetFileFromApplicationUriAsync(new Uri Must know design pattern?whats your favourite design pattern or you think is one must know one or the one you keep seeing in C#.NET Core Console Application with Xunit not detecting the console project as a project reference.I have created a C#.NET Core Console Application. And added new Xunit project under the same solutio