{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 不美不萌又怎样 的问题《Encrypt data traffic between c# and mysql》','https://www.manongdao.com/q-739669.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I have a windows application in C#.Net which uses mysql database to store data. Mysql DB and windows application are on the same machine. I am working through a security audit for a system at my work and one of the requirements is to encrypt all traffic between C# and Mysql. I have already implemented openssl and the connection has now encrypted but I also need to encrypt the Data traffic between c# and mysql. For e.g when the insert query executes from c#, the packet software (echo mirage) shows clear text(whole insert query with data) may be the reason is my c# application is using hardcode queries instead of stored procedures. How can I encrypt the traffic? Please help
相关问题
- Sorting 3 numbers without branching [closed]
- Graphics.DrawImage() - Throws out of memory except
- Generic Generics in Managed C++
- Why am I getting UnauthorizedAccessException on th
- 求获取指定qq 资料的方法
If one of your requirements is "to encrypt all traffic between C# and Mysql", then I would recommend setting the
require_secure_transportsystem variable (on your MySQL Server) to 1. This will prevent any insecure connections from being created at all.You will also need to configure your MySQL Server to use SSL, as per this tutorial (which you referenced in the comments).
In your C# program, make sure you have
SslMode=Requiredin your connection string. This will ensure that all traffic between C# and MySQL, including queries and responses, is encrypted (apart from a short plaintext handshake at the very beginning of a connection).Once this is done, Echo Mirage (or any network packet capture tool) will not be able to read the plain text of queries on the wire.