Protect password file
-
Hi, I have created a login in my winform application, i encrypt the password and store in a xml file. I am worried about if the user deletes the xml file, he can crack into the system. can you please suggest me how to make sure user cannot delete the xml file. I tried embedding the xml file but, if i do that authorized users will not be able to change password and update the xml. Please help Thanks for your time and knowledge, Karmendra
-
Hi, I have created a login in my winform application, i encrypt the password and store in a xml file. I am worried about if the user deletes the xml file, he can crack into the system. can you please suggest me how to make sure user cannot delete the xml file. I tried embedding the xml file but, if i do that authorized users will not be able to change password and update the xml. Please help Thanks for your time and knowledge, Karmendra
KSuthar wrote:
if the user deletes the xml file, he can crack into the system.
Why? If the application can not validate the password by using your xml file, in other words, the validation fails. In this case, the app should not let the user login. Hence, it should not be the problem at all.
:) I Love KongFu~
-
KSuthar wrote:
if the user deletes the xml file, he can crack into the system.
Why? If the application can not validate the password by using your xml file, in other words, the validation fails. In this case, the app should not let the user login. Hence, it should not be the problem at all.
:) I Love KongFu~
And if the user deletes the xml file by going to the physical location of the file. what shall I do in such case. as of now my program recreates the xml with default password.
-
And if the user deletes the xml file by going to the physical location of the file. what shall I do in such case. as of now my program recreates the xml with default password.
KSuthar wrote:
And if the user deletes the xml file by going to the physical location of the file. what shall I do in such case. as of now my program recreates the xml with default password.
That's entirely up to you and your app specifications how it should respond. Recreating with a default password seems reasonable, IF it doesn't compromise the secruity of your data. Oh! You can't stop someone from deleting the file...
A guide to posting questions on CodeProject[^]
Dave Kreskowiak Microsoft MVP Visual Developer - Visual Basic
2006, 2007, 2008 -
And if the user deletes the xml file by going to the physical location of the file. what shall I do in such case. as of now my program recreates the xml with default password.
KSuthar wrote:
what shall I do in such case.
If the user has the administration authority, I do not think we can stop him/her to delete the file. Maybe you can design you app logic again for validating password.
KSuthar wrote:
as of now my program recreates the xml with default password.
Is it safe enough for you? If yes, go ahead.:)
:) I Love KongFu~