Post by George Lewycky
We are trying to encrypt the users email in a stored proc in SQL Server
2008R2 using cdosysmail to allow them to unsubscribe using encrypted
query string to prevent hacking, etc.
And also in the stored procedure to DEcrypt the query string back to
validate and/or update the record to unsubscribe.
'<br>' + ' <a href="http://www.yada.com/Unsubscribe.aspx?email=' +
It might be that this is not my business domain, but I don't really
understand what you want to do.
Is the purpose to generate a unsubscribe link which is unique to
the recipent, but which does not disclose the identity or the
email address of the recipent? Why not just generate a GUID and put
that in the link and when you receive the unsubcribe request you
look the GUID to see which email it maps to? If you don't want to
repeat the GUID, you can generate a new each time, and have multiple
GUIDs to map to the same recipent.
Erland Sommarskog, Stockholm, ***@sommarskog.se