Connecting Tech Pros Worldwide Forums | Help | Site Map
bytes > topic > access > answers

Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

Edlueze
Guest
  
Posts: n/a
#1: Nov 13 '05
I am developing some Data Access Pages (DAP) using Microsoft Access
2003 on Microsoft Windows XP.

When I try to open these pages (located on my C: drive), the display of
the data access page is blocked and I receive the following error
message in the Information Bar in Microsoft Internet Explorer:

"To help protect your security, Internet Explorer has restricted this
site from showing certain content. Click here for options."

I can then click on the Information Bar to Allow Blocked Content, and
everything works just fine - but it gets a little annoying after a
while. Any idea how to stop this happening when I try and deploy these
data access pages for my users?

Trevor Best
Guest
  
Posts: n/a
#2: Nov 13 '05

re: Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

Edlueze wrote:[color=blue]
> I am developing some Data Access Pages (DAP) using Microsoft Access
> 2003 on Microsoft Windows XP.
>
> When I try to open these pages (located on my C: drive), the display of
> the data access page is blocked and I receive the following error
> message in the Information Bar in Microsoft Internet Explorer:
>
> "To help protect your security, Internet Explorer has restricted this
> site from showing certain content. Click here for options."
>
> I can then click on the Information Bar to Allow Blocked Content, and
> everything works just fine - but it gets a little annoying after a
> while. Any idea how to stop this happening when I try and deploy these
> data access pages for my users?
>[/color]

Not really, it's a security feature. When you can leave your car in the
street with the keys in the ignition and not have it taken, then MS will
remove that block :-)

The only way to completely avoid it is to write a real web application.
lylefair
Guest
  
Posts: n/a
#3: Nov 13 '05

re: Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

I've never had this problem. If I did I would explore "calling" the
DAPS from an HTA.

MSDN says this about HTAs.

"Your application is fully trusted and free from the restrictions
placed on Web pages for security reasons. Unlike Web pages, which run
when visited, users will need to trust your HTA; however, once
installed and run, your HTA can potentially do anything any program
can"

I have been successful in opening HTM files (DAPs are HTM files) from
within an HTA.

HTAs are introduced at
http://msdn.microsoft.com/library/de...tml/ie5hta.asp
Edlueze
Guest
  
Posts: n/a
#4: Nov 13 '05

re: Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

Thanks for the tips! HTA's were new to me and quite interesting to read
about.
Ananda Sim
Guest
  
Posts: n/a
#5: Nov 13 '05

re: Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

Have you tried this:

"Allow active content to run in files on My Computer - Windows XP
Service Pack 2"

http://www.winxptutor.com/lmzunlock.htm


Edlueze wrote:[color=blue]
> I am developing some Data Access Pages (DAP) using Microsoft Access
> 2003 on Microsoft Windows XP.
>
> When I try to open these pages (located on my C: drive), the display of
> the data access page is blocked and I receive the following error
> message in the Information Bar in Microsoft Internet Explorer:
>
> "To help protect your security, Internet Explorer has restricted this
> site from showing certain content. Click here for options."
>
> I can then click on the Information Bar to Allow Blocked Content, and
> everything works just fine - but it gets a little annoying after a
> while. Any idea how to stop this happening when I try and deploy these
> data access pages for my users?
>[/color]
David W. Fenton
Guest
  
Posts: n/a
#6: Nov 13 '05

re: Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

"Edlueze" <edlueze@onegen.com> wrote in
news:1130894104.798806.84460@o13g2000cwo.googlegro ups.com:
[color=blue]
> Thanks for the tips! HTA's were new to me and quite interesting to
> read about.[/color]

As a standard practice, I disable the HTA file assocation on every
workstation I sit down at, because it's an excellent way for hackers
to do nasty things to your computer. I also disable the default VBS
associations (though leaving WSH available for calling explicitly).
There have been viruses/worms distributed as HTAs, just as there
have been VBS viruses/worms, and that's why I disable it.

It's a Microsoft-only technology and works only in IE, which is
naither reason not to use it, since it hardwires your app to the
most insecure and poorly designed web browser available anywhere.

--
David W. Fenton http://www.bway.net/~dfenton
dfenton at bway dot net http://www.bway.net/~dfassoc
Lyle Fairfield
Guest
  
Posts: n/a
#7: Nov 13 '05

re: Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

"David W. Fenton" <dXXXfenton@bway.net.invalid> wrote in
news:Xns9702AE567E58dfentonbwaynetinvali@216.196.9 7.142:
[color=blue]
> "Edlueze" <edlueze@onegen.com> wrote in
> news:1130894104.798806.84460@o13g2000cwo.googlegro ups.com:
>[color=green]
>> Thanks for the tips! HTA's were new to me and quite interesting to
>> read about.[/color]
>
> As a standard practice, I disable the HTA file assocation on every
> workstation I sit down at, because it's an excellent way for hackers
> to do nasty things to your computer. I also disable the default VBS
> associations (though leaving WSH available for calling explicitly).
> There have been viruses/worms distributed as HTAs, just as there
> have been VBS viruses/worms, and that's why I disable it.
>
> It's a Microsoft-only technology and works only in IE, which is
> naither reason not to use it, since it hardwires your app to the
> most insecure and poorly designed web browser available anywhere.[/color]

If you want expert advice about something from someone who knows nothing
about it and who has never used it and therefore MUST denigrate it, then
David is your expert of choice.
lylefair
Guest
  
Posts: n/a
#8: Nov 13 '05

re: Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

If you want to know everything about a technology from someone who
knows nothing about it then David is certainly your expert of choice.
Trevor Best
Guest
  
Posts: n/a
#9: Nov 13 '05

re: Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

Lyle Fairfield wrote:[color=blue][color=green]
>>It's a Microsoft-only technology and works only in IE, which is
>>naither reason not to use it, since it hardwires your app to the
>>most insecure and poorly designed web browser available anywhere.[/color]
>
>
> If you want expert advice about something from someone who knows nothing
> about it and who has never used it and therefore MUST denigrate it, then
> David is your expert of choice.
>[/color]

I don't know much about HTAs and DAPs but David is not wrong about IE
being insecure.
Lyle Fairfield
Guest
  
Posts: n/a
#10: Nov 13 '05

re: Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

Trevor Best wrote:
[color=blue]
> I don't know much about HTAs and DAPs ....[/color]

It seems so. Perhaps you could read:
http://msdn.microsoft.com/workshop/a...w.asp#Security
[color=blue]
> but David is not wrong about IE being insecure.[/color]

I agree. IE can be an insecure program with which to browse or interact
with the Internet. But when IE hosts an HTA it's not browsing or
interacting with the Internet. An executable which requires components
of IE is running; this executable (HTA) is no more and no less dangerous
than any other executable.

HTAs can be deployed as packages, over the web or in combination of the
two. Packages are my preferred deployment method. If you read this you
will note that IE does not have to connect to the Internet at all to run
a local HTA.

"The Package Model

In the package deployment model, the installation process for the HTA is
the same as for traditional applications. Files are copied from disk or
over a network, using any installer or self-extracting executable. The
installer places the application in the Program Files directory or in
the directory selected by the user. A link to the HTA is included in the
Start menu. And the application's dependency on Internet Explorer 5 or
greater is registered. This way the user is warned that uninstalling
Internet Explorer will disable that application. Look to tools vendors
for vehicles for packaging and delivering HTAs to your specifications.

Like the Web model, the package model has points in its favor. The user
is prompted only during the initial installation about trusting the
application; thereafter, the application runs as trusted code just as an
..exe does. Also, the installed HTA is always available to users, whether
they are connected to the server or not."

When a web manifestation of an HTA is run, all IE is connecting for is
to download the latest file update.
David W. Fenton
Guest
  
Posts: n/a
#11: Nov 13 '05

re: Viewing Data Access Pages (DAP) - Internet Explorer Protecting Your Security

Lyle Fairfield <lylefair@aol.com> wrote in
news:Xns9702B6FA150DFlylefairaolcom@216.221.81.119 :
[color=blue]
> "David W. Fenton" <dXXXfenton@bway.net.invalid> wrote in
> news:Xns9702AE567E58dfentonbwaynetinvali@216.196.9 7.142:
>[color=green]
>> "Edlueze" <edlueze@onegen.com> wrote in
>> news:1130894104.798806.84460@o13g2000cwo.googlegro ups.com:
>>[color=darkred]
>>> Thanks for the tips! HTA's were new to me and quite interesting
>>> to read about.[/color]
>>
>> As a standard practice, I disable the HTA file assocation on
>> every workstation I sit down at, because it's an excellent way
>> for hackers to do nasty things to your computer. I also disable
>> the default VBS associations (though leaving WSH available for
>> calling explicitly). There have been viruses/worms distributed[/color][/color]
as[color=blue][color=green]
>> HTAs, just as there have been VBS viruses/worms, and that's why[/color][/color]
I[color=blue][color=green]
>> disable it.
>>
>> It's a Microsoft-only technology and works only in IE, which is
>> naither reason not to use it, since it hardwires your app to the
>> most insecure and poorly designed web browser available[/color][/color]
anywhere.[color=blue]
>
> If you want expert advice about something from someone who knows
> nothing about it and who has never used it and therefore MUST
> denigrate it, then David is your expert of choice.[/color]

Well, since you know all things, why don't you point out exactly
which parts of what I said are incorrect.

Please provide documentation.

Peronslly, I don't use the same technologies that hackers use to
compromise people's systems. My reason for that is that I don't
want
people mistaking my work for a virus or worm.

You obviously don't care about that.

But you haven't demonstrated that anything I"ve said about HTSs is
wrong.

--
David W. Fenton http://www.bway.net/~dfenton
dfenton at bway dot net http://www.bway.net/~dfassoc
Closed Thread

« previous question | next question »

Similar Microsoft Access / VBA bytes

/bytes/development

/bytes/it

Forums
Visit our community forums for general discussions and latest on Bytes

Our staff and community areas have moved to bytes.com/forums/

/bytes/about

We are a network of experts and professionals in IT and software development that help one another with answers to tough questions and share insights. Get the best answers to your questions from over 226,501 network members.

dev questions:
algorithms | asp | asp.net | c/c++ | coldfusion | c# | flash | html/css | java | javascript |
mobile dev | .net | perl | php | python | ruby | software dev | vb.net | visual basic | xml
it questions:
access | apache | careers | db2 | iis | macosx | mysql | networking | oracle | postgresql | sql server | unix | windows

About Bytes | Copyright 1995-2009 BYTES. All rights Reserved