中国网络渗透测试联盟

标题: web.Config加密解密最简单实用方法 [打印本页]

作者: admin    时间: 2013-8-5 15:33
标题: web.Config加密解密最简单实用方法
web.config的文件多数的时候不希望别人看到,下面提供一个加密,解密的语句,简洁方便实用,先看到效果,至于加密的原理其他的网页上做了很多说明,这里只演示效果。
, I4 V: J0 v* i5 d0 F. i2 E  加密前的connectionStrings节点, m6 r' B, ?  ?. r' v1 ]5 T
  代码
0 s% l% z( B6 P) J) t+ t  N% z  <connectionStrings>! S$ _( u9 N8 u+ {( l8 n0 f
  <add name="SQLConnString1" connectionString="server=WJW-PC\SQL2008;user id=sa;password=12345;Initial Catalog=dbFASH;min pool size=4;max pool size=400;" />" |9 y8 X( j# a7 W5 u) V2 J
  <add name="eziyaConnectionString1" connectionString="Data Source=HOME-COMPUTER;Initial Catalog=dbFASH;Integrated Security=True;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"0 n, M8 V, G+ I+ b
  providerName="System.Data.SqlClient" />5 l3 ?! ^3 s7 i, a( F/ n: M
  <add name="eziyaConnectionString2" connectionString="Data Source=192.168.1.200;Initial Catalog=dbFASHersist Security Info=True;User ID=taoka;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"
* E+ q, @1 E( V" ?  k5 {# d  providerName="System.Data.SqlClient" />% E7 R, R  Y$ }; s7 p  [& u
  <add name="eziyaConnectionString3" connectionString="Data Source=192.168.61.160;Initial Catalog=dbFASHersist Security Info=True;User ID=sa;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"
4 D# C0 n/ q5 l4 J, W% v  providerName="System.Data.SqlClient" />  P5 J+ C0 E2 @5 E  q
  </connectionStrings>) m" m6 g* O$ Y; ?
  加密后的connectionStrings的节点9 w* }0 u2 ^2 J3 Z0 [5 Y# k
  代码
0 b0 V$ U3 Q5 H) O" O: a9 ?  b. w- v  <connectionStrings configProtectionProvider="RsaProtectedConfigurationProvider">
& S8 i! V- T. d- n4 Q- w! h0 S  <EncryptedData Type="http://www.w3.org/2001/04/xmlenc#Element"
0 E2 D* C/ D9 o# w  xmlns="http://www.w3.org/2001/04/xmlenc#"&gt;7 e  |% v# ~2 @" i
  <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />
6 Z7 W1 H- f  u" u: Y8 Q  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"&gt;
: a* N3 B# f! G2 s6 y3 |  <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"&gt;" D5 R; n5 [. J, V" d
  <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" />
/ n" q( i2 s4 z" }  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"&gt;
+ g) I# _4 K2 }) _; P! `' I  <KeyName>Rsa Key</KeyName>1 J4 I, A- B- S
  </KeyInfo>+ }1 ^$ R, R0 Q7 g/ c
  <CipherData>; |3 [, \- Y+ l# W8 w% y
  <CipherValue>FOkydQFNniZvq71ua4XapuVCUrJFOARkXeqqwyKFoP+NGXGewehxYW0zTzIn/j+YCvH/r6ABoE/AfWMMEDyr81R1mhi4ckXbiJ2BvW612/W7f7Wkqj+FDwse+lgAISHZ5HfspaY1LBvKYAu1VEm6Iu6NlT35TPnjxFf+p5Apf0E=</CipherValue>
, r% L+ W8 X, B  </CipherData>& Y8 ]# _! g1 I1 U5 r
  </EncryptedKey>
9 Y, ?) [( R4 [& W% m  </KeyInfo>% O" b) ]6 s! Z6 S" b9 j$ X0 C
  <CipherData>
) Q0 f# d4 i" x- K& k) s1 Q  <CipherValue>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</CipherValue># ~! }7 x1 |4 t5 k
  </CipherData>+ b/ P/ d, d4 s$ ~8 \" [
  </EncryptedData>: E2 G% j, x/ r- F+ u, e" o' n* B
  </connectionStrings>' r5 d0 [3 z3 F$ W/ c& j5 `' T
  完全看不到连接的信息!
' j# A2 v2 R& J5 ~/ @  下面是两个.bat批处理文件$ X+ F  ?2 j5 c$ S7 H6 ^8 S1 Z. o8 ]
  加密:' _9 \" U- U! P4 n. y! Z: j
  @echo off
* T; s/ G  m/ r8 r; D; t  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe -pef "connectionStrings" "E:\code\proj\Web"
- f$ X7 I+ x. G# N  解密:
- }/ L2 s) b- z$ I  @echo off
1 P! j7 S: c$ a& u0 l( i# c  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe -pdf "connectionStrings" "E:\code\proj\Web"5 P: |, k, ?  f3 n
  PAUSE' s5 B/ G, M' t* u5 l, S
  直接将语句拷贝到.BAT文件中,E:\code\proj\Web为相应的web.config所在的路径,只能在一台电脑上操作,否则不可逆
作者: Anthony~    时间: 2013-8-5 19:31
好方法。我正好刚遇到这个问题




欢迎光临 中国网络渗透测试联盟 (https://www.cobjon.com/) Powered by Discuz! X3.2