中国网络渗透测试联盟

标题: web.Config加密解密最简单实用方法 [打印本页]
作者: admin    时间: 2013-8-5 15:33
标题: web.Config加密解密最简单实用方法
web.config的文件多数的时候不希望别人看到,下面提供一个加密,解密的语句,简洁方便实用,先看到效果,至于加密的原理其他的网页上做了很多说明,这里只演示效果。8 o- k& v1 n3 P
  加密前的connectionStrings节点9 E0 F5 B$ A# e* C/ G* Q
  代码
, n7 E4 b& C) P; `9 c* ?, C9 |  <connectionStrings>
7 w2 I9 [; ]- y! m9 a( o  <add name="SQLConnString1" connectionString="server=WJW-PC\SQL2008;user id=sa;password=12345;Initial Catalog=dbFASH;min pool size=4;max pool size=400;" />
1 j+ ~) {# k) o' b( j  <add name="eziyaConnectionString1" connectionString="Data Source=HOME-COMPUTER;Initial Catalog=dbFASH;Integrated Security=True;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;") }- [6 m" {- t$ d- Z0 j
  providerName="System.Data.SqlClient" />
3 H3 r& x9 R! I7 z  <add name="eziyaConnectionString2" connectionString="Data Source=192.168.1.200;Initial Catalog=dbFASHersist Security Info=True;User ID=taoka;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"0 W9 D* K0 e' }1 @# I
  providerName="System.Data.SqlClient" />
! P0 a- g+ h8 L9 y( x  <add name="eziyaConnectionString3" connectionString="Data Source=192.168.61.160;Initial Catalog=dbFASHersist Security Info=True;User ID=sa;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"5 S5 U1 U0 Y; c
  providerName="System.Data.SqlClient" />2 E3 e+ r9 D) V$ x9 j
  </connectionStrings>
- F! y) f" c$ x; x' b, B- w4 e3 J  加密后的connectionStrings的节点6 }. |+ G: I1 [$ k# v" o+ I
  代码
$ W1 ]+ V0 j' ~+ X# [8 Z$ }+ x% `# Y  <connectionStrings configProtectionProvider="RsaProtectedConfigurationProvider">3 R: V3 ]1 F+ m2 {+ _
  <EncryptedData Type="http://www.w3.org/2001/04/xmlenc#Element") |  j+ b. e& p" t
  xmlns="http://www.w3.org/2001/04/xmlenc#"&gt;) a$ l/ U) P0 n! `
  <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />
; s' @6 t7 B) F9 i( e; b1 ?  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"&gt;( h; H( @0 }4 l0 U: R
  <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"&gt;
# {" K8 L( ?- H8 k  <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" />. M/ Y, a' }+ P' {* {, D- s' Z
  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"&gt;
4 K6 E' Q9 {$ O. B8 B  <KeyName>Rsa Key</KeyName>" f! F7 B4 u* j$ y$ W% ?
  </KeyInfo>
% a! g& C* o2 v& Y, D8 H3 I  <CipherData>
( j6 _: B" b- F& {/ n+ ?3 b  <CipherValue>FOkydQFNniZvq71ua4XapuVCUrJFOARkXeqqwyKFoP+NGXGewehxYW0zTzIn/j+YCvH/r6ABoE/AfWMMEDyr81R1mhi4ckXbiJ2BvW612/W7f7Wkqj+FDwse+lgAISHZ5HfspaY1LBvKYAu1VEm6Iu6NlT35TPnjxFf+p5Apf0E=</CipherValue>
5 o: p/ n  G  u8 O) q- l  U  </CipherData>! n% F/ Y1 Y7 ~
  </EncryptedKey>
  G8 v0 H1 `- Q' Y$ m' }. O3 R% {" G  </KeyInfo>
& H0 X  R: a/ d9 ?% r  <CipherData>
3 ^: P7 K0 c* U  <CipherValue>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</CipherValue>
' u, i: L  Q. ~2 R8 R  </CipherData>$ Q5 q0 U8 X: Z
  </EncryptedData>! [+ B4 ?; N; [  O7 p
  </connectionStrings>/ k" D7 [# ?6 F! @$ A
  完全看不到连接的信息!$ \+ n9 q# s9 V2 [/ g
  下面是两个.bat批处理文件2 i# _& {2 ], S0 w  q
  加密:7 G& B+ V  D% o
  @echo off$ e" X, x# B( B) [( y3 u
  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe -pef "connectionStrings" "E:\code\proj\Web"
9 h( p/ m2 @# E: h8 G/ v  解密:
, s2 Z5 F) A! R9 g1 O  A  @echo off
1 r  s7 u5 K' X/ w, ]# N4 E  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe -pdf "connectionStrings" "E:\code\proj\Web"
8 h7 X" n) \8 v9 `- P, z) B  PAUSE
2 ~) H4 K! v9 @4 A  直接将语句拷贝到.BAT文件中,E:\code\proj\Web为相应的web.config所在的路径,只能在一台电脑上操作,否则不可逆
作者: Anthony~    时间: 2013-8-5 19:31
好方法。我正好刚遇到这个问题



欢迎光临 中国网络渗透测试联盟 (https://cobjon.com/) Powered by Discuz! X3.2