I have two websites with almost same structure and design........ What happened today was, database connection error comes out on every page where database interaction was there in both the sites.......i checked in web.config..... the connection string was
fine......also i was not able to connect to database using my user account in sql server management studio (connection timeot error was showing)......
What i did was create a new database account in one of my site and changes that in web.config of that site, and errors gone in both the sites.....
The strange thing was that both sites have different database user accounts and database names......... so how can creating a new DB user account in one site solves the issue in other site.
I would like to know whether this was a security threat or something else ?
I would also like to know what is the purpose of .Security file in my plesk panel account ?
This sounds like something went wrong with your database server because it affected 2 site with seperate code, but that pointing at the same db server (even if different databases).
The scenario you describe doesn't fully make sense so I wonder if there isn't some other (unknown) facts that are causing this ?
No sure what the .security file is all about, sounds like your website hosting company uses it for their own configuration, this being the case you should probably leave it alone.
Perhaps if you post some more information about your environment it will help other answer your question ?
Is it hosted ?
Do you manage the server?
What platform (asp.net I presume), framework version etc?
What vendor and version of database server ? (ms sql is assumed)
The security file looks like something your hosting company uses to map your login to the website (virtual directory) in IIS and any logins (ftp for example) that your account uses.
I've not seen this file format before, and it seems to have fields related to your hosting environment, which is why I think it belongs to your hosting company, or more specifically the system they use to manage their customer websites.
rajesh sahar...
Member
226 Points
564 Posts
Is this a security threat
May 10, 2012 12:08 PM|LINK
I have two websites with almost same structure and design........ What happened today was, database connection error comes out on every page where database interaction was there in both the sites.......i checked in web.config..... the connection string was fine......also i was not able to connect to database using my user account in sql server management studio (connection timeot error was showing)......
What i did was create a new database account in one of my site and changes that in web.config of that site, and errors gone in both the sites.....
The strange thing was that both sites have different database user accounts and database names......... so how can creating a new DB user account in one site solves the issue in other site.
I would like to know whether this was a security threat or something else ?
I would also like to know what is the purpose of .Security file in my plesk panel account ?
Thanks
rajesh sahar...
Member
226 Points
564 Posts
Re: Is this a security threat
May 11, 2012 12:49 PM|LINK
Please someone reply.......
atleast tell me about .Security file (XML file)...... What is the use of this file ?
Thanks
rajesh sahar...
Member
226 Points
564 Posts
Re: Is this a security threat
May 11, 2012 12:52 PM|LINK
wikkard
Member
204 Points
38 Posts
Re: Is this a security threat
Jun 12, 2012 07:23 AM|LINK
This sounds like something went wrong with your database server because it affected 2 site with seperate code, but that pointing at the same db server (even if different databases).
The scenario you describe doesn't fully make sense so I wonder if there isn't some other (unknown) facts that are causing this ?
No sure what the .security file is all about, sounds like your website hosting company uses it for their own configuration, this being the case you should probably leave it alone.
Perhaps if you post some more information about your environment it will help other answer your question ?
Is it hosted ?
Do you manage the server?
What platform (asp.net I presume), framework version etc?
What vendor and version of database server ? (ms sql is assumed)
etc.
www.icle.com.au
www.wikkard.net
rajesh sahar...
Member
226 Points
564 Posts
Re: Is this a security threat
Jun 12, 2012 01:01 PM|LINK
yes it is hosted on shared hosting server.
website is in asp.net 4.0
Sqlserver 2008
Bye the way, that issue have not come again yet.
but for general purpose i want to know what .security file is......i have already posted a type of entry that is in the file
Thanks
wikkard
Member
204 Points
38 Posts
Re: Is this a security threat
Jun 13, 2012 12:23 AM|LINK
The security file looks like something your hosting company uses to map your login to the website (virtual directory) in IIS and any logins (ftp for example) that your account uses.
I've not seen this file format before, and it seems to have fields related to your hosting environment, which is why I think it belongs to your hosting company, or more specifically the system they use to manage their customer websites.
www.icle.com.au
www.wikkard.net
rajesh sahar...
Member
226 Points
564 Posts
Re: Is this a security threat
Jun 13, 2012 01:07 PM|LINK
Thanks i also think so.........