I am building an application with VB.NET 2003, using the SQL Server 2005 database engine. I am using the SQLClient interface to connect my application to the database. I cant use Integrated Security so I use a SQL user and password.
Can a SNIFFER PROGRAM obtain my SQL USER PASSWORD which travels inside the connection string in the connection object? Does it travels through the net encripted?