Visual Studio Magazine

Encrypting the Web.Config File

If you're concerned about keeping critical information in your Web.config file, then you should encrypt it -- or at least the parts that you're concerned about. I love keeping information in my ...
Computerworld

Top application security vulnerabilities in Web.config files, part 2

SPI Dynamics – Some of the most common and dangerous application security vulnerabilities that exist in ASP.NET Web-based applications come not from the C# or VB.NET code that make up its pages and ...