Solved

Allowing websites access to SSL-secured database server

Posted on 2013-11-10
2
226 Views
Last Modified: 2013-11-14
Hi All,

I have a website that uses an MS SQL db on the same box as the website. This site uses SSL, and all is good for now.

However I have someone who would like to build websites that can connect to this database from other servers.

Surely this kind of security concern has come up before? What are some of my options of taking, say, a form submittal, from a website on a different server with a different IP who most likely would not have SSL, and somehow get that to my secure database?

Any suggestions?

Thank you

Bill
0
Comment
Question by:billium99
2 Comments
 
LVL 52

Assisted Solution

by:Scott Fell, EE MVE
Scott Fell,  EE MVE earned 200 total points
ID: 39637719
Probably the best thing to do is use a webservice/wcf http://blogs.msdn.com/b/ericwhite/archive/2010/05/11/getting-started-building-a-wcf-web-service.aspx

This way you are not directly accessing the db.
0
 
LVL 51

Accepted Solution

by:
Ted Bouskill earned 300 total points
ID: 39647065
OK, first off, server side SSL only prevents 3rd parties from reading packets in transit, it does NOT prevent someone else from malicious use of the connection to the database.  Exposing a database port is very dangerous.  If the remote site is penetrated they then have full access to your database.

A web service is just another logical layer without any additional security.  In fact, web services do not offer any security other than what the web server provides!

I'd suggest a secure VPN tunnel from the remote web server to your server and even then provide least privilege access.
0

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to speed up an ASP/MS SQL web application 6 70
Time/Date Query 11 40
Summernote and form validation 10 133
document.getElementById not worj with 2 IDs with the same name 10 39
I would like to start this tip/trick by saying Thank You, to all who said that this could not be done, as it forced me to make sure that it could be accomplished. :) To start, I want to make sure everyone understands the importance of utilizing p…
Have you ever needed to get an ASP script to wait for a while? I have, just to let something else happen. Or in my case, to allow other stuff to happen while I was murdering my MySQL database with an update. The Original Issue This was written…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

775 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question