[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1174
  • Last Modified:

Access SQL Server 2005 over internet connection (Best security)

SQL Server 2005/ADO.NET 1.1/VisualStudio 2003 C#

Hi,
 I have an application need to communicate with SQL Server 2005 outside a network. My Customer need to have a Hight Level of security and he could not open SQL Server port. All my others customer, use VPN Connection to manage this problem. But in this situation, my customer doesn't have a VPN and we need to access with Hight Security Level my SQL database. I know that it's possible to build my own server, or access sql with a web service but i don't have time to do this. I need your help to find the best way to resolve this problem and propose solution to our customer : (I forget!  We use a mixed mode security in SQL Server)

Proxy ?
SSL ?
VPN ?
Web Service ?
Custom Server ?
Others

How to implement your best way with ADO.net ? How to pass in connectstring ?
 
It's really important to know that we need to keep performance on SQL Access.

Thanks.

0
TelDig
Asked:
TelDig
  • 6
  • 4
1 Solution
 
YveauCommented:
SSL is easy (once the certificate is installed) and very widely supported. Any connection can use it out of the box (except for JDBC) and it's a matter of one certificate on the server and it works ...
It's very secure. Did my own sniffing with wireshark, nothing that gets over the line is recognizable in any way.

Try this:
http://support.microsoft.com/kb/316898

Hope this helps ...
0
 
TelDigAuthor Commented:
thanks for your anwser, but i'm a beginner in security - SSL in SQL Server, I would like to know if you know some problems with SSL during implementation ?

thanks
0
 
YveauCommented:
No, just the certificate is a bit difficult ... Once that is in place, works like a charm !

Hope this helps ...
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 
TelDigAuthor Commented:
When we use SSL, did you need to open a SQL port on internet ?
0
 
YveauCommented:
Didn't run in on the Internet, so didn't had that issue ... good question. My first guess it would be running on port 1433 ...

0
 
TelDigAuthor Commented:
ok but is my biggest issue. I need to certified to my customer then SQL Server can't be hack outside his network. How it's possible to do it ?
0
 
YveauCommented:
If you open the port for yourself ... anybody could use that port ... so that is a pretty tough one.
The VPN server would be the best option I guess ...

Try:
http://openvpn.net/
I use it myself, very simple to setup.

Hope this helps ...
0
 
TelDigAuthor Commented:
ok, Exept VPN and SSL, Witch mode do you suggest ?
Thanks
0
 
YveauCommented:
VPN is probably the most secure ... I would go for VPN. And even then you could do SSL which is always good if going over the Internet.

Hope this helps ...
0
 
YveauCommented:
Glad I could be of any help and thanks for the grade !
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

  • 6
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now