Skip to content
← LINQPad Feature Suggestions

I suggest you ...

LINQPad Feature Suggestions

Categories

(thinking…)

security vulnerability

I noticed I can do the following below and it shows the password in my connection string.

string sConnection = Util.GetMyQueries().First().GetConnectionInfo().DatabaseInfo.GetCxString();

sConnection.Dump();

I would prefer it did not do this.

3 votes
Vote

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
You have left! (?) (thinking…)
David W shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • AdminJoe Albahari (LINQPad) (CEO / Founder, LINQPad) commented  ·   ·  Report

    It's not possible to prevent programmatic access to the connection string or password. This is because the connection itself needs the full connection string in order to operate. Note that this does not mean that unencrypted password is stored in the .linq file.