中国网络渗透测试联盟

标题: web.Config加密解密最简单实用方法 [打印本页]
作者: admin    时间: 2013-8-5 15:33
标题: web.Config加密解密最简单实用方法
web.config的文件多数的时候不希望别人看到,下面提供一个加密,解密的语句,简洁方便实用,先看到效果,至于加密的原理其他的网页上做了很多说明,这里只演示效果。1 v5 D/ A8 F. Z: }% K+ G( v4 P
  加密前的connectionStrings节点' u) Q1 y+ E8 D, Z7 p0 g
  代码
, b+ u: @. @7 G; c, a' J  <connectionStrings>
& K& ?! x! t4 w. B1 u  <add name="SQLConnString1" connectionString="server=WJW-PC\SQL2008;user id=sa;password=12345;Initial Catalog=dbFASH;min pool size=4;max pool size=400;" />
! F3 `/ ~7 Z# j( _6 X5 k  <add name="eziyaConnectionString1" connectionString="Data Source=HOME-COMPUTER;Initial Catalog=dbFASH;Integrated Security=True;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"
4 C# k. {/ P: |4 Z) i# V4 K  providerName="System.Data.SqlClient" />
% H8 K) t3 }+ B: i+ p' y$ f  <add name="eziyaConnectionString2" connectionString="Data Source=192.168.1.200;Initial Catalog=dbFASHersist Security Info=True;User ID=taoka;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"3 J8 i$ T2 O2 `# a5 D' N
  providerName="System.Data.SqlClient" />) L7 w  u1 x3 k9 H" p' @
  <add name="eziyaConnectionString3" connectionString="Data Source=192.168.61.160;Initial Catalog=dbFASHersist Security Info=True;User ID=sa;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"
4 k5 p6 S+ B4 V  providerName="System.Data.SqlClient" />  y  f6 H7 r4 A
  </connectionStrings>  c$ ^  b! L: U: M: Y$ ]
  加密后的connectionStrings的节点. S8 }9 y& p1 F" x
  代码+ u; R+ F# z  ~# m- B
  <connectionStrings configProtectionProvider="RsaProtectedConfigurationProvider">
! _0 w% `7 W9 @9 }' Y3 `  <EncryptedData Type="http://www.w3.org/2001/04/xmlenc#Element"
- {$ {) n# r8 g4 h/ _& V  xmlns="http://www.w3.org/2001/04/xmlenc#"&gt;: b5 R+ e2 N, t. V/ k& V6 f
  <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />3 x- ?- R! e, d  k7 {
  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"&gt;1 m  \5 [9 Z1 \* u
  <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"&gt;
% x' E/ e# F5 W- s  <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" />
6 L" }: f5 k1 T; s6 ~4 S, x  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"&gt;6 f) V+ w1 G; |3 ?7 `' M9 z
  <KeyName>Rsa Key</KeyName>
2 H/ B2 N  a" C  </KeyInfo>: U; T, d6 i0 X8 n
  <CipherData>
2 r8 ]( L: y  ^$ ^5 ?- j  <CipherValue>FOkydQFNniZvq71ua4XapuVCUrJFOARkXeqqwyKFoP+NGXGewehxYW0zTzIn/j+YCvH/r6ABoE/AfWMMEDyr81R1mhi4ckXbiJ2BvW612/W7f7Wkqj+FDwse+lgAISHZ5HfspaY1LBvKYAu1VEm6Iu6NlT35TPnjxFf+p5Apf0E=</CipherValue>
+ n; I/ j5 X& T5 ]; n0 W. s# Q6 i  </CipherData>
5 g. e2 i4 c- W8 A2 K# j  </EncryptedKey>' T( q6 r8 h( m& ]: }+ P
  </KeyInfo>, y/ n% c3 O* d8 R% R) C
  <CipherData>$ a4 X  A! @* c+ D, {
  <CipherValue>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</CipherValue>
$ V! L+ P0 s1 c, j# R  </CipherData>
4 b) s& h& j. ]5 J5 l0 s  </EncryptedData>
. {& W4 M; K3 o  </connectionStrings>$ s4 X% @; _* g6 v: {
  完全看不到连接的信息!
" W) `4 t' K! ?' M  下面是两个.bat批处理文件
2 `2 ]' W* d$ c( P. j5 c! m2 Z; J  加密:
, U6 S2 \8 f+ z" X" o  @echo off! }5 J% _) V% ^2 V6 `# p! \
  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe -pef "connectionStrings" "E:\code\proj\Web"
0 S! c# V# Q5 g! ~; W  解密:
& s' h: x; r& p* p8 w  @echo off* u' t# H% }6 u) s: c
  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe -pdf "connectionStrings" "E:\code\proj\Web"
* n: c4 {! W1 @5 {' r  PAUSE
$ H( Y) t& ]# a) @6 |. _  直接将语句拷贝到.BAT文件中,E:\code\proj\Web为相应的web.config所在的路径,只能在一台电脑上操作,否则不可逆
作者: Anthony~    时间: 2013-8-5 19:31
好方法。我正好刚遇到这个问题



欢迎光临 中国网络渗透测试联盟 (https://www.cobjon.com/) Powered by Discuz! X3.2