Solved

Advice on Design of Agent Program to get/put SQL data

Posted on 2011-09-19
4
218 Views
Last Modified: 2012-05-12
we are developing an agent that will reside on endpoints (computers) and they will have to talk through a firewall to a SQL server.  The problem is we want to make this as secure as possible, and have doubts that direct connections to SQL is the way to go.  Trying to get some opinions on best method to do this. Here is what we are considering.

1.  A web service located on same box as SQL server, the agents talk to the web service instead of SQL directly.  Would use IIS and SSL

2. A socket windows service that listens on port xxx on server, the agents talk to this service, the service communicates to SQL and returns results.

Our programmers are thinking 1 is the best and most secure way, but wanted to get some others thoughts and ideas
0
Comment
Question by:rkneal
4 Comments
 
LVL 25

Accepted Solution

by:
TempDBA earned 84 total points
ID: 36565969
I second the first idea.
0
 
LVL 11

Assisted Solution

by:azarc3
azarc3 earned 83 total points
ID: 36566256
Of the two, #1 is definitely the more secure.
0
 
LVL 14

Assisted Solution

by:binaryevo
binaryevo earned 83 total points
ID: 36569198
I agree with my colleagues, #1 is going to give you the most flexibility and security.
0
 

Author Closing Comment

by:rkneal
ID: 36571070
was hoping for a little backup other than just choosing, but received very detailed explanation from programmer today that made it clear.
0

Featured Post

Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

For those of you who don't follow the news, or just happen to live under rocks, Microsoft Research released a beta SDK (http://www.microsoft.com/en-us/download/details.aspx?id=27876) for the Xbox 360 Kinect. If you don't know what a Kinect is (http:…
How to leverage one TLS certificate to encrypt Microsoft SQL traffic and Remote Desktop Services, versus creating multiple tickets for the same server.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question