Hi and Thanks in advance!
I am able to link to a MSAccess 2000 db that I secured. I have removed
all permissions from the Admin user and actually the whole users group
and admins group. I changed the database owner to a user I call owner.
But, I can still link to this db from an unsecured database. Can you
think of anything else to check?
Thanks,
Kathy
6  1970 
"KathyK" <ka************ *@nike.com> wrote in message
news:df******** *************** ***@posting.goo gle.com... Hi and Thanks in advance!
I am able to link to a MSAccess 2000 db that I secured. I have removed
all permissions from the Admin user and actually the whole users group
and admins group. I changed the database owner to a user I call owner.
But, I can still link to this db from an unsecured database. Can you
think of anything else to check?
Thanks,
Kathy
If you can get access from an unsecured database/workgroup (where you
are automatically logged on as the default user 'admin') it means that
'admin' has still got too many permissions. This comes about as all
'admin' accounts are identical regardless of database or workgroup.
Probably 'admin' is still a members of 'admins' in your new workgroup
file (you did create a new workgroup file didn't you?) and thus inherits
its permissions. You cannot remove implicit permissions from 'admins',
you must therefore be careful who is allowed to be a member of it, start
with the minimum, ie only your owner account. Also check that 'admin'
and 'users' have no permissions to the database itself as well the
objects in it. All accounts are members of 'users' so its permissions
are also critical.
If you still cannot see the problem get the security FAQ from M$ and
follow the recipe there carefully.
David
I did create a new workgroup file. I created my own DBAdmin group and
only those people have all rights. I removed all rights from the admin
group and the user group and removed the admin user from the admin
group. The admin user is not a member of any group but the user group.
I changed the ownership of the database and all abjects.
I'm still stumped! I'm going to get the Faq, but any other thouyghts
would be helpful!
Kathy
"David Hare-Scott" <pr*****@nowher e.com> wrote in message news:<RX******* *************@n ews-server.bigpond. net.au>... "KathyK" <ka************ *@nike.com> wrote in message
news:df******** *************** ***@posting.goo gle.com... Hi and Thanks in advance!
I am able to link to a MSAccess 2000 db that I secured. I have removed
all permissions from the Admin user and actually the whole users group
and admins group. I changed the database owner to a user I call owner.
But, I can still link to this db from an unsecured database. Can you
think of anything else to check?
Thanks,
Kathy
If you can get access from an unsecured database/workgroup (where you
are automatically logged on as the default user 'admin') it means that
'admin' has still got too many permissions. This comes about as all
'admin' accounts are identical regardless of database or workgroup.
Probably 'admin' is still a members of 'admins' in your new workgroup
file (you did create a new workgroup file didn't you?) and thus inherits
its permissions. You cannot remove implicit permissions from 'admins',
you must therefore be careful who is allowed to be a member of it, start
with the minimum, ie only your owner account. Also check that 'admin'
and 'users' have no permissions to the database itself as well the
objects in it. All accounts are members of 'users' so its permissions
are also critical.
If you still cannot see the problem get the security FAQ from M$ and
follow the recipe there carefully.
David
How are you logging onto the workgroup? Is it being done by setting your
new workgroup as the default workgroup (using the workgroup administrator)
or using the Access command line switches?
Also did you secure the database using the user level security wizard?
Sorry to ask about things that you've probably already thought of but Jet
Security is rather like taming a wild bear - dangerous and messy while
learning but of immense satisfaction once you've got it cracked!
"KathyK" <ka************ *@nike.com> wrote in message
news:df******** *************** ***@posting.goo gle.com... I did create a new workgroup file. I created my own DBAdmin group and
only those people have all rights. I removed all rights from the admin
group and the user group and removed the admin user from the admin
group. The admin user is not a member of any group but the user group.
I changed the ownership of the database and all abjects.
I'm still stumped! I'm going to get the Faq, but any other thouyghts
would be helpful!
Kathy
"David Hare-Scott" <pr*****@nowher e.com> wrote in message
news:<RX******* *************@n ews-server.bigpond. net.au>... "KathyK" <ka************ *@nike.com> wrote in message
news:df******** *************** ***@posting.goo gle.com... Hi and Thanks in advance!
I am able to link to a MSAccess 2000 db that I secured. I have removed
all permissions from the Admin user and actually the whole users group
and admins group. I changed the database owner to a user I call owner.
But, I can still link to this db from an unsecured database. Can you
think of anything else to check?
Thanks,
Kathy
If you can get access from an unsecured database/workgroup (where you
are automatically logged on as the default user 'admin') it means that
'admin' has still got too many permissions. This comes about as all
'admin' accounts are identical regardless of database or workgroup.
Probably 'admin' is still a members of 'admins' in your new workgroup
file (you did create a new workgroup file didn't you?) and thus inherits
its permissions. You cannot remove implicit permissions from 'admins',
you must therefore be careful who is allowed to be a member of it, start
with the minimum, ie only your owner account. Also check that 'admin'
and 'users' have no permissions to the database itself as well the
objects in it. All accounts are members of 'users' so its permissions
are also critical.
If you still cannot see the problem get the security FAQ from M$ and
follow the recipe there carefully.
David
"Ben Eaton" <be************ @hotmail.com> wrote in message
news:bn******** **@news.wplus.n et... How are you logging onto the workgroup? Is it being done by setting
your new workgroup as the default workgroup (using the workgroup
administrator) or using the Access command line switches?
Also did you secure the database using the user level security wizard?
Sorry to ask about things that you've probably already thought of but
Jet Security is rather like taming a wild bear - dangerous and messy while
learning but of immense satisfaction once you've got it cracked!
If the mdb is properly secured the result of attempting to open it using
the incorrect workgroup should be no access. If the custom groups and
accounts are visible then the correct workgroup ust be in use.
David
"KathyK" <ka************ *@nike.com> wrote in message
news:df******** *************** ***@posting.goo gle.com... I did create a new workgroup file. I created my own DBAdmin group and
only those people have all rights. I removed all rights from the admin
group and the user group and removed the admin user from the admin
group. The admin user is not a member of any group but the user group.
I changed the ownership of the database and all abjects.
I'm still stumped! I'm going to get the Faq, but any other thouyghts
would be helpful!
Kathy
You have missed something, one of the steps that you think you has done
has not in fact been done.
Try this test. Attempt to open the MDB using your custom workgroup and
logon as 'admin', you should have its password as you must give it one
to invoke the logon process. You should not be able to open it. If you
can then that account has permision to do so either explicitly or
implicitly though membership of a group that has permission. Go though
these things again as you have missed something. If all else fails
follow the FAQ recipe.
David
If you are logging into a workgroup that has permissions to use those
tables, then you can most certainly link to those tables from another
database.
If you are able to link to the database when logged into a different
workgroup, then you have a problem.
However, if you have given a user access to the tables, and they are logged
intot he correct workgroup, then then they will be able to link to them. You
can prevent this, but it is certanly a bit of work. (you will have to read
the secirty FAQ).
--
Albert D. Kallal (MVP)
Edmonton, Alberta Canada No************@ msn.com http://www.attcanada.net/~kallal.msn This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics | |
by: Ed Jaffe |
last post by:
All:
1) Could any one show me any website which is using asp, ssl, sql server?
2) Is ASP/IIS technology good enough to create a commerical secured internet
web application?
3) People said most of the secured internet web application (e.g.
banking...) is using java, is that true?
Simon
|
by: Michael Brandt Lassen |
last post by:
Hi gurus
This problem is about calling Web services secured by Forms Authentication
from Windows Forms user controls embedded in HTML.
Using the object tag I’ve managed to include a Windows Forms user control in
my HTML page (a .NET alternative to good old ActiveX).
I’d like to use my control to call web-services instead of using behaviours
(webservices.htc).
|
by: news.btinternnet.com |
last post by:
I can do this in IE
myLink.click(); //Invoking the handler as if the user had clicked on the
link themselves.
I need to be able to do the same in Netscape Navigator,
can anyone help ?
|
by: L Mehl |
last post by:
Hello --
I am using Enterprise Architect, a UML modeling tool, which is built on a
pre-Access 2000 mdb. The database describing the model has the extension
".eap".
I want to build some queries, reports, etc., on this model and want to store
them in a separate mdb.
Is there a way to link to objects in an Access database that has a non-"mdb"
|
by: VB Programmer |
last post by:
I want to write a file to the "secured" dir that is on my website. The full
path is: C:\inetpub\wwwroot\MyWebSite\Secured
I tried this, but it didn't work:
Dim strFileName As String = "Secured\MyFile.txt"
Dim sw As New StreamWriter(strFileName)
sw.WriteLine("Testing 1-2-3")
sw.Close()
Response.Redirect(strFileName)
| | |
by: John West |
last post by:
I have a Web Site that I want to monitor and gather
information from which requires a secured user id and
password of which I have but don't know how to gather get
by the secured log in to get to the pages I need. I have
gathered information from sites that don't require secured
login by using the following code:
Function readHtmlPage(ByVal url As String) As String
Dim objResponse As WebResponse
Dim objRequest As WebRequest
|
by: vineet.jsl |
last post by:
Hello Everybody,
i am facing some problem in accessing secured web service. i have some
experience with web services but not with Secured web services.
Actually what i have to do is, first, i made a windows application to
access a web service. its running fine. But later, the web service
provider changed the web service into Secured web service. and they
have given me a "echoserviceclient.cert" Certificate file. now i dont
know what the...
|
by: Daniel Frechette |
last post by:
Hi,
Is it possible to have secured (SSL/HTTPS) and non-secured (HTTP)
content in the same page without breaking the security? I am developing
a secured reservation system in which the user can access Google Maps
(not secured). The map is embedded in the page and does not open in a
separate window.
What solution do you recommend? Use iframes? If so, how?
|
by: trihanhcie |
last post by:
Hi,
I have a <img src = "http:// ..."> which needs to be put in a secured
page. For example on amazon when the confirmation page is displayed...
The problem is that it's a secured page (https) and my tag is an
absolute path... It looks like it's the problem because the tag is not
secured. What are the possible solution to display the image without
the warning message?
Thanks
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look !
Part I. Meaning of...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed.
This is as boiled down as I can make it.
Here is my compilation command:
g++-12 -std=c++20 -Wnarrowing bit_field.cpp
Here is the code in...
| | |
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth.
The Art of Business Website Design
Your website is...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own....
Now, this would greatly impact the work of software developers. The idea...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
|
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
| | |
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
| |
