To prevent manipulation, we recommend removing write access to the configuration file after installing TiCon. Read access is sufficient for the user to start TiCon and work with the program.
The config.xml file is located in the Programdata folder of the installed TiCon version. By default under: "%PROGRAMDATA%\MTM\TiCon 4.XX\Config.xml". |
1.Right-click on the config.xml to open the Context menu and select the Menu Properties. 2.Select the Security tab, click on the button Advanced and select the Advanced security settings menu. 3.In the tab Authorizations select the user Everyone and click on the button Deactivate inheritance. 4. Select in the menu Deactivate inheritance the option Convert inherited permissions to explicit permissions for this object. 5.Close the dialog Advanced security settings with OK . 6.Select the user Everyonein dialog Properties and click Edit. 7.In this menu select the user Everyone and in the rights list in the column Allow , deselect everything except Read. 8.Confirm the selection with the OK Button. 9. Properties-Dialogue with OK Close button. |
In this way, you as administrator prevent accidental changes and malicious chang to the database connection in order to steal connection parameters.
As an alternative solution, the config.xml can also be shifted to the program directory. The program directory may only be written with administrator authorization. This automatically protects the config.xml against unintentional changes.
If the configuration file has been shifted to the program directory or another directory, this directory must be specified when the ticon4.exe is started, e.g. like this:
TiCon4.exe /ini:""c:\Program Files\MTM\TiCon 4.09\config.xml".
This Information can be specified e.g. in the start shortcut.