symbiont – WindowsTechs.com

Why does the OWASP Code Review Guide v2.0 recommend DPAPI with known vulnerabilities? [closed]

Posted on September 28, 2021 by symbiont

Why does the OWASP Code Review Guide v2.0 recommend DPAPI with known vulnerabilities?
I’m referring to section 12.4 "What to Review: Protection at Rest":

A secure way to implement robust encryption mechanisms within source
code … Continue reading Why does the OWASP Code Review Guide v2.0 recommend DPAPI with known vulnerabilities? [closed]→

SQL Server connections with TLS vs. through an encrypted tunnel?

Posted on April 12, 2021 by symbiont

I’m developing an application that will connect to Microsoft SQL Server in a local network:

I’m considering whether these connections need to use TLS
Or whether to leave it to the customer’s administrators to use an encrypted tunnel, if t… Continue reading SQL Server connections with TLS vs. through an encrypted tunnel?→