Encrypt custom section in web.config - any improvements in net3.5 and higher?

anyone from MS or some MS MVP? Any improvements for encrypting specific custom section in web.config besides using hack like in Using ASPNet_Regiis to encrypt custom configuration section - can you do it?

Danger of being hacked is very high these days, so be able encrypt config is something which can certainly help improve sec开发者_开发百科urity.

Anyone info, update welcome.

Thanks, X.

Not sure if this is an answer to your question, but when I had the issue with encrypting an custom configuration section, got the error unable to find the "type" assembly.

i found this link in which it was suggested using System.Configuration.SingleTagSectionHandler if the custom section only has single tag element with multiple attributes

VaultOfThoughts link

Now i can encrypt the custom config section using "aspnet_regiis -pe" command line.

I've faced this problem myself today and really struggled to get anywhere with the command line tool aspnet_regiis.exe

I think my main problem is that I had built myself a custom section group, not just a section so the command line tool didn't really want to play ball.

Instead I wrote a webpage with access restricted to myself with code similar to the following

Private Sub Encrypt()
    Dim cfg As Configuration = WebConfigurationManager.OpenWebConfiguration(Request.ApplicationPath)
    Dim grp As ConfigurationSectionGroup = cfg.GetSectionGroup("MySectionGroup")
    Dim sect As ConfigurationSection
    For r As Integer = 0 To grp.Sections.Count - 1
        sect = grp.Sections(r)
        If Not sect.SectionInformation.IsProtected Then
            sect.SectionInformation.ProtectSection("RsaProtectedConfigurationProvider")
        End If
    Next
    cfg.Save()
End Sub

Hope this helps or at least points you in the right direction :) Decrypting is basically the opposite of above (.UnprotectSection)